ae13b1c3cf71b696139349fae4e78f228a9171292bbab0b0632b1c796d8e9e50

Analysis

max time kernel
275s
max time network
386s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
24-11-2022 03:45

Target

volksbank_de_transaktions_id_000023928001_2014_11_0000390382755_00003997550002.exe
Size

196KB
MD5

d7fd49d4410382601fe67202e8c1a79c
SHA1

535a451840798c318ce47dbcc3dd2a44ee2fa547
SHA256

734d09cbc840e4349a3d5fd4751e2237d7cc5066590cd0408e2cfad354fd4c38
SHA512

83201380e91f4b8b6a3e3f57272717651842fe480a3c92c64289ec695e83e49abad633bdba0436886e89c90b6a9c4489ba0dc3236762b2f3598c4ed54c9037c4
SSDEEP

3072:9NEZWOQdDuZph4fWy6c3v40y+rzqVCr+YARsI6u2t4Y9sBG0hac0v2DEoro+:9cKNuFIdt3vTrz1r+R7F2t4pUOEoB

Score

1^/10

C:\Users\Admin\AppData\Local\Temp\volksbank_de_transaktions_id_000023928001_2014_11_0000390382755_00003997550002.exe
"C:\Users\Admin\AppData\Local\Temp\volksbank_de_transaktions_id_000023928001_2014_11_0000390382755_00003997550002.exe"
1⤵
PID:4864

C:\Windows\SysWOW64\cmd.exe
"C:\Windows\system32\cmd.exe" /c "C:\Users\Admin\AppData\Roaming\MS6493~1.BAT"
2⤵
PID:4464

memory/2648-136-0x00007FFF46C30000-0x00007FFF46C40000-memory.dmp

Filesize
64KB

Download
memory/4464-135-0x0000000000000000-mapping.dmp

Download
memory/4864-133-0x0000000001370000-0x000000000137D000-memory.dmp

Filesize
52KB

Download
memory/4864-134-0x0000000000330000-0x0000000000368000-memory.dmp

Filesize
224KB

Download