Overview

overview

1

Static

static

a968b99881...3c.exe

windows7-x64

1

a968b99881...3c.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/11/2022, 07:47 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a968b998817a8e4822982cf676d60bb0d1bc59e0634235289a438c0e0c12773c.exe

  • Size

    620KB

  • MD5

    dbcca9469a9436a377bb990721a89deb

  • SHA1

    bfb608225823bfb39ce0e277ad8f751ac165ec6e

  • SHA256

    a968b998817a8e4822982cf676d60bb0d1bc59e0634235289a438c0e0c12773c

  • SHA512

    f6d653de99ab6071e5d712df47b06bc93b8004084337013373b19a3d045508b164e9985a25cf4d1372c811260a1b6bec1e9f972b16737550e971b02c34e65315

  • SSDEEP

    12288:URlkZ9oTEMcwv96evAcHbwgTsqCyXWojzRHGhCbXNIgqwYeJXi:2kvg1/7wgTs9IWYzRmhMnYeJXi

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\a968b998817a8e4822982cf676d60bb0d1bc59e0634235289a438c0e0c12773c.exe
    "C:\Users\Admin\AppData\Local\Temp\a968b998817a8e4822982cf676d60bb0d1bc59e0634235289a438c0e0c12773c.exe"
    1⤵
      PID:3472

    Network

    • flag-unknown
      DNS
      151.122.125.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      151.122.125.40.in-addr.arpa
      IN PTR
      Response
    • flag-unknown
      DNS
      d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.0.0.0.5.0.8.0.0.3.0.1.3.0.6.2.ip6.arpa
      Remote address:
      8.8.8.8:53
      Request
      d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.0.0.0.5.0.8.0.0.3.0.1.3.0.6.2.ip6.arpa
      IN PTR
      Response
    • 8.238.21.126:80
      322 B
       7
    • 8.238.21.126:80
      260 B
       5
    • 104.109.143.4:443
      tls
      92 B
       104 B
       2
      2
    • 20.190.159.71:443
      260 B
       5
    • 8.253.208.120:80
      260 B
       5
    • 104.46.162.226:443
      322 B
       7
    • 104.80.225.205:443
      322 B
       7
    • 8.238.21.126:80
      322 B
       7
    • 8.238.21.126:80
      322 B
       7
    • 8.238.21.126:80
      322 B
       7
    • 8.238.21.126:80
      260 B
       5
    • 23.193.41.188:80
      46 B
       40 B
       1
      1
    • 95.101.58.226:443
      tls
      92 B
       111 B
       2
      2
    • 23.2.174.96:443
      tls
      92 B
       104 B
       2
      2
    • 23.2.174.96:443
      tls
      92 B
       104 B
       2
      2
    • 8.253.208.120:80
      260 B
       5
    • 8.238.21.126:80
      46 B
       40 B
       1
      1
    • 67.24.35.254:80
      260 B
       5
    • 8.8.8.8:53
      151.122.125.40.in-addr.arpa
      dns
      73 B
       159 B
       1
      1

      DNS Request

      151.122.125.40.in-addr.arpa

    • 8.8.8.8:53
      d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.0.0.0.5.0.8.0.0.3.0.1.3.0.6.2.ip6.arpa
      dns
      118 B
       204 B
       1
      1

      DNS Request

      d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.0.0.0.5.0.8.0.0.3.0.1.3.0.6.2.ip6.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.