6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3

Analysis

max time kernel
179s
max time network
195s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
29-11-2022 14:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
Size

84KB
MD5

0412af582f527fb6909cdab5c5cef302
SHA1

b0b3c972839555c6281649dd3c482974de910364
SHA256

6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3
SHA512

8b11c97b1593469b23bd7a8462a7f9ff0d9072a520fe173cb02869d5324c195b7eb322f30ca444e8c8edf45a959e82b4fdcdee305ee6f7d9b51a18253276da02
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzVoJK3e:lV2BZVPlFlnxClFvLLcA+sPDz8Ye

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 18 IoCs

description	ioc	Process
File opened for modification	C:\Windows\win32dc\Sims 2 + hack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Silent Hill 4 crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Silent Hill 4(hack).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Quake3 + codes.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\UT2004(nocd).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2 crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4(hack).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Quake3 + codes.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Silent Hill 4(codes).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Half-Life 2(nocd).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Quake3 crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Quake3 crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2(nocd).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Half-Life 2 crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Sims 2 + hack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File created	C:\Windows\win32dc\Silent Hill 4 + crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4 + crack.exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4(codes).exe	6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe

C:\Users\Admin\AppData\Local\Temp\6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe
"C:\Users\Admin\AppData\Local\Temp\6d0642f7b19388833bd9b0543634d69f4a3305dff54a937462c6654c2db129e3.exe"
1⤵
- Drops file in Windows directory
PID:3416

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads