dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe

Analysis

max time kernel
152s
max time network
138s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
20/10/2022, 01:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
Size

110KB
MD5

a0a266ffd53f92709019c5e5e5d33fc0
SHA1

ee93ba78781f346e94543d07f721d938ec7ea7b9
SHA256

dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe
SHA512

3a65b04e959de604296e0fbebcb7bcb273c7ba59fc2249a4db4f5fecfe1005045488df62fdc00001484d2df0eecf36ef165bb48c8069fdb2320f4b157012f5aa
SSDEEP

3072:lV2BZVPlFlnxClFvLLcA+sPDzfQcrf/TxQNq/qASWUFKR:bQrNFxwjF+Uj1/qAS/KR

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 16 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\Counter-Strike(trainer).exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\Doom 3 fix.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\DAoC(nocd).exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File opened for modification	C:\Windows\win32dc\DAoC(nocd).exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\Quake3 + fix.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike(trainer).exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike + nocd.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File opened for modification	C:\Windows\win32dc\Doom 3 fix.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\Counter-Strike + nocd.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\Counter-Strike nocd.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\Quake3_crack.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\Counter-Strike_codes.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike_codes.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\FlatOut(codes).exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File created	C:\Windows\win32dc\DAoC serial.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
File opened for modification	C:\Windows\win32dc\DAoC serial.exe	dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe

C:\Users\Admin\AppData\Local\Temp\dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe
"C:\Users\Admin\AppData\Local\Temp\dbb3906f6079270ea8561492e9acaeab6ccfc9694ddecb0240b9f892d64f9dbe.exe"
1⤵
- Drops file in Windows directory
PID:4784

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads