Analysis
-
max time kernel
151s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
06/11/2022, 23:41
Static task
static1
Behavioral task
behavioral1
Sample
7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe
Resource
win7-20220812-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe
-
Size
400KB
-
MD5
130ab6911417d525fc5bb00425af89f0
-
SHA1
357638ba2a821ee3113503337941751ea79901f4
-
SHA256
7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819
-
SHA512
8bf1e9efa244d4bc8b0b7ba60cd7ac33051131c94ce9774d0a9c20d4e2808ab6768f507e87abfd22e2aa057a70c74bf7807561bd5bd619d3063f78567b6deb60
-
SSDEEP
6144:FBekzbm846yxV8kEvfY851JXFL8cF9VGQDqQhGJtVxvgksG1C6nunr:jNzbi6OV8dXFwQ9MxtfY8XAr
Score
1/10
Malware Config
Signatures
-
Modifies registry class 5 IoCs
description ioc Process Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\shell\OpenHomePage\Command 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\shell 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\shell\OpenHomePage 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe -
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe 836 7c4a7910274cd5f68d574a16784d248256d536323bb927f6d8f560b1fb46e819.exe