601836c0dc3ea31eaa147f2a5d3bf8ed40fb2ae1fc1555b8e841bbef36921ed3 | Triage

Analysis

max time kernel
191s
max time network
220s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
25/11/2022, 22:28 UTC

Sharing

Report Analysis Logs

General

Target

601836c0dc3ea31eaa147f2a5d3bf8ed40fb2ae1fc1555b8e841bbef36921ed3.exe
Size

91KB
MD5

605948c12f86e09e0505fea95f69dde6
SHA1

fb2e472796d1ee61c0bdda5a4a407b6695b5459b
SHA256

601836c0dc3ea31eaa147f2a5d3bf8ed40fb2ae1fc1555b8e841bbef36921ed3
SHA512

452ca869f41eac2f0b7030c0b8cf05255a0742b026f08a9c54e78200b18ec073644360654e44b23244a3103039883dd4477f8a7774ae479a5ce28b48cb920b64
SSDEEP

1536:i2ax6NhP7Ro+VEtn3N4KcTnaOleXHcxGek3bdSZ6oo3k0wNUXM:vbXiVN4KszeX8xGek3b0Z6o+k08Uc

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\601836c0dc3ea31eaa147f2a5d3bf8ed40fb2ae1fc1555b8e841bbef36921ed3.exe
"C:\Users\Admin\AppData\Local\Temp\601836c0dc3ea31eaa147f2a5d3bf8ed40fb2ae1fc1555b8e841bbef36921ed3.exe"
1⤵
PID:748

Network

DNS

96.108.152.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

96.108.152.52.in-addr.arpa

IN PTR

Response

88.221.25.154:80

322 B
7
104.80.225.205:443

322 B
7
52.178.17.3:443

322 B
7
87.248.202.1:80

322 B
7
87.248.202.1:80

322 B
7
209.197.3.8:80

322 B
7
40.125.122.151:443

260 B
5
8.238.21.126:80

46 B
40 B
1
1
8.238.21.126:80

46 B
40 B
1
1
8.238.21.126:80

46 B
40 B
1
1

8.8.8.8:53

96.108.152.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

96.108.152.52.in-addr.arpa

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/748-132-0x0000000000400000-0x000000000042E000-memory.dmp

Filesize
184KB

Download