6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e | Triage

Analysis

max time kernel
123s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
11/10/2022, 08:33 UTC

Sharing

Report Analysis Logs

General

Target

6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e.exe
Size

226KB
MD5

4456be8b593b929ad13307fe35fd32e0
SHA1

03621c512f9964506e1d46a3139db52e4d6a8a44
SHA256

6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e
SHA512

9b12ef2e60f333f6fc4b365c1938836f50ef092ac70ff9115ca2e4b270e1a91fb0bbfc36ee33f294dee959721a8e930a7f8daff25a6d14e55892f1142cbc653b
SSDEEP

3072:9fcxjRphVh+oiJiGyjZNVn7U0MNYztqD8Xt4s+g/OJ5ngp4Y:N49p3htYydf76yzt4eGLgp4Y

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e.exe
"C:\Users\Admin\AppData\Local\Temp\6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e.exe"
1⤵
PID:5028

Network

DNS

1.735322.getsecureinstall.com

6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e.exe

Remote address:

8.8.8.8:53

Request

1.735322.getsecureinstall.com

IN A

Response

93.184.220.29:80

260 B
5
52.178.17.2:443

322 B
7
104.80.225.205:443

322 B
7
67.24.27.254:80

322 B
7
67.24.27.254:80

322 B
7
67.24.27.254:80

322 B
7
52.109.12.20:443

322 B
7
8.238.21.254:80

46 B
40 B
1
1
8.238.21.254:80

46 B
40 B
1
1

8.8.8.8:53

1.735322.getsecureinstall.com

dns

6ebfbc86f0a3ecedb48327e3b03d57fcb47ea04980f7b436c8c6163185800c9e.exe

75 B
148 B
1
1

DNS Request

1.735322.getsecureinstall.com

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads