5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67

Analysis

max time kernel
36s
max time network
41s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
06/11/2022, 10:38

Target

5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67.exe
Size

22KB
MD5

315f3805ffb55f38f99fc9dd02378f00
SHA1

ff095e418a2e779c0d03ef6317efc0ea7c049810
SHA256

5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67
SHA512

45504ab8f8ce0411e030c8f889c82598dd1614bb3f6165aed85ba57d5b926e8d81fa801b37e1b5afdd220a294d010fc0a915aee0c732fadd8ba2395cc2d9faed
SSDEEP

384:3ZTZoW6EX7nk+DQFO08KYgx6GliIGfAVDQmN6Pzi7TbHAMrw8VcfvIruw0E:JiWFDkns08K9liIGfeDQmN8u7XtjVcfK

Score

5^/10

Drops file in System32 directory 3 IoCs

description	ioc	Process
File opened for modification	C:\Windows\SysWOW64\ANNGMHIN	5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67.exe
File opened for modification	C:\Windows\SysWOW64\WSOCK32.DLL	5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67.exe
File created	C:\Windows\SysWOW64\ANNGMHIN	5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67.exe

C:\Users\Admin\AppData\Local\Temp\5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67.exe
"C:\Users\Admin\AppData\Local\Temp\5a90f99f01b8166ceab7b40922e55a03ab8ffcd5547fda66c4f8086067009b67.exe"
1⤵
- Drops file in System32 directory
PID:1672

memory/1672-54-0x0000000000020000-0x0000000000026000-memory.dmp

Filesize
24KB

Download
memory/1672-55-0x0000000000020000-0x0000000000026000-memory.dmp

Filesize
24KB

Download