c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8

Analysis

max time kernel
259s
max time network
302s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
23/11/2022, 21:33

Target

c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe
Size

107KB
MD5

5971cc400b43b48fe401c12e8b340da0
SHA1

ab8d275dcba5645c34b219b80babac86b8ce1561
SHA256

c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8
SHA512

6cfa38b66b6e11c261ac27322b379f74931fe39c4db47d9699c5faac04b85150f0645b2e600e920b1b7d44b7b629b8e7137928ad42b831b3c708546738d24147
SSDEEP

1536:ehGhXIa3dTcWGzwlNriM5dBzJcfVotqUdxLbpjVrs2ryrd1vUQuqQGFNiNwc+c:ehlaNTcWG8N5dB+tiqUdxLbHs2quGf9

Score

1^/10

Modifies registry class 4 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5C9CC7B1-994B-A8BA-2C62-CA26D67EC48D}	c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5C9CC7B1-994B-A8BA-2C62-CA26D67EC48D}\ = "kwrbqjthhhztebzr"	c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5C9CC7B1-994B-A8BA-2C62-CA26D67EC48D}\LocalServer32	c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5C9CC7B1-994B-A8BA-2C62-CA26D67EC48D}\LocalServer32\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe"	c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe

C:\Users\Admin\AppData\Local\Temp\c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe
"C:\Users\Admin\AppData\Local\Temp\c9a5ec70ff50086476023b8eae1911d3a155837de6b16541268ed188ebb71ed8.exe"
1⤵
- Modifies registry class
PID:3452

memory/3452-132-0x0000000000400000-0x0000000000432000-memory.dmp

Filesize
200KB

Download
memory/3452-133-0x00000000001E0000-0x00000000001FE000-memory.dmp

Filesize
120KB

Download
memory/3452-134-0x00000000001E0000-0x00000000001FE000-memory.dmp

Filesize
120KB

Download
memory/3452-135-0x0000000000400000-0x0000000000432000-memory.dmp

Filesize
200KB

Download