a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823

Analysis

max time kernel
38s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
29-11-2022 08:11

Target

a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823.exe
Size

70KB
MD5

b16b2b365ac5427a4ea747af084808c9
SHA1

24fd13302c87e31bcda2d7118e1486d5e02fb436
SHA256

a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823
SHA512

72d5688ef723610707532727ba49bda93f238b5d9081a0be9236f9069392549cd8047221e9e86f326de80a0b8c7990471aeaa7ffd945b00d8c296dd9cf57bace
SSDEEP

384:N4ZTrnSLWImYmVAS2WjkuEVsTOml6lmyOf83xnpsaB4VrhIKiwH0wHfwHxS6xeqY:yxrnHo+TfjfUsTKmRwnpsaBYIK0reP7

Score

4^/10

Drops file in Windows directory 3 IoCs

description	ioc	Process
File opened for modification	C:\Windows\wininit.ini	a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823.exe
File created	C:\Windows\WSOCK32.IH6	a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823.exe
File opened for modification	C:\Windows\WSOCK32.IH6	a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823.exe

C:\Users\Admin\AppData\Local\Temp\a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823.exe
"C:\Users\Admin\AppData\Local\Temp\a4af1bf1bbece8e378105f71feba534b1d6d2740ae8ea1f34d1fbc0dda6f2823.exe"
1⤵
- Drops file in Windows directory
PID:800

memory/800-54-0x0000000000400000-0x00000000004121D2-memory.dmp

Filesize
72KB

Download