6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873

Analysis

max time kernel
152s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
29/10/2022, 10:55

Target

6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe
Size

61KB
MD5

92097e3e6fd8a8e32a7980f858d8d907
SHA1

5faa3c7d125b69cbf2923009515c3d4aec9fa81e
SHA256

6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873
SHA512

417684476d854cb802bf57ff5a53a536ed066e4b2d9bdd575d68d54e0962da2fc8bd04724a54c4bba4d92394eb3f143aa536b3a97c75be580fe9b6c84be7d23e
SSDEEP

1536:49l+WVFCjQioI9npFZufUMYOAPEQrCRwP:4GWVcvZPMYOA/CRwP

Score

1^/10

Modifies registry class 4 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6A9709B5-DAF8-80AB-FC5A-8A01DAF18508}\ = "tnqhnbswhbbztzxn"	6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6A9709B5-DAF8-80AB-FC5A-8A01DAF18508}\LocalServer32	6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6A9709B5-DAF8-80AB-FC5A-8A01DAF18508}\LocalServer32\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe"	6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6A9709B5-DAF8-80AB-FC5A-8A01DAF18508}	6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe

C:\Users\Admin\AppData\Local\Temp\6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe
"C:\Users\Admin\AppData\Local\Temp\6cb14cd1b000f5a84325883be1d12c306971114143fe879b20e94e350a155873.exe"
1⤵
- Modifies registry class
PID:4948

memory/4948-132-0x0000000000400000-0x0000000000425489-memory.dmp

Filesize
149KB

Download
memory/4948-133-0x00000000001E0000-0x00000000001FE000-memory.dmp

Filesize
120KB

Download
memory/4948-134-0x0000000000400000-0x0000000000425489-memory.dmp

Filesize
149KB

Download
memory/4948-135-0x00000000001E0000-0x00000000001FE000-memory.dmp

Filesize
120KB

Download