ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3

Analysis

max time kernel
60s
max time network
45s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
29-11-2022 20:44

Target

ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe
Size

1.1MB
MD5

428ec679a50d28cde444c283e1574e07
SHA1

46578c483ec9516b3f96e059ac03a11d92903ef0
SHA256

ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3
SHA512

21f062edc4f222c9462cbf20c2d69d3b17d6f242731d87aacaa0ff3714909e1b87488d2705b1fa29cc80c7c2c12001ab44c151476acb7f8b448829c283bb175f
SSDEEP

24576:aEhEy4boWWiGk3sv+eDs6puwZvLykwnB1vn40dNky2LIiBBbRd3t8l9:aEhTYoWWk8VDsoHBO/B1f46NkBLXBFdm

Score

1^/10

Modifies Control Panel 3 IoCs

evasion

Processes:

ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe

description	ioc	process
Set value (str)	\REGISTRY\USER\S-1-5-21-999675638-2867687379-27515722-1000\Control Panel\International\sShortDate = "yyyy-MM-dd"	ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-999675638-2867687379-27515722-1000\Control Panel\International\iDate = "2"	ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-999675638-2867687379-27515722-1000\Control Panel\International\sDate = "-"	ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe

C:\Users\Admin\AppData\Local\Temp\ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe
"C:\Users\Admin\AppData\Local\Temp\ed8e8a0e8cf2463b07fe8cb9d91fe46cfc94fa9d001373f2d406a3888105c8c3.exe"
1⤵
- Modifies Control Panel
PID:2044

memory/2044-54-0x0000000000400000-0x00000000007B6000-memory.dmp

Filesize
3.7MB

Download
memory/2044-55-0x0000000075F81000-0x0000000075F83000-memory.dmp

Filesize
8KB

Download
memory/2044-56-0x0000000000400000-0x00000000007B6000-memory.dmp

Filesize
3.7MB

Download
memory/2044-58-0x0000000000400000-0x00000000007B6000-memory.dmp

Filesize
3.7MB

Download
memory/2044-57-0x0000000000400000-0x00000000007B6000-memory.dmp

Filesize
3.7MB

Download
memory/2044-59-0x0000000000400000-0x00000000007B6000-memory.dmp

Filesize
3.7MB

Download
memory/2044-60-0x0000000000400000-0x00000000007B6000-memory.dmp

Filesize
3.7MB

Download