5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8

Analysis

max time kernel
151s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
01/12/2022, 00:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
Size

90KB
MD5

1b5184f31f654955a026064f99b84c9f
SHA1

6b83aefce42a67491371f0d652f78a08bec47fda
SHA256

5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8
SHA512

b75dfcffcb17e12d72a9ffb4ced322513c7c8ec01da0851b7678dc3bb1a5e66b445abc2b896606af0fa1b0a92e0562da03a3f1c0f6feec7e2ff9049ef62df62f
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzgmE8PUl5n+mE:lV2BZVPlFlnxClFvLLcA+sPDzgmxCh+l

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 19 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\Doom 3 hack.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Sims 2 patch.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Quake3 cdfix.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Quake3_cheat.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Quake3 cdfix.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\BattleField 1942(patch).exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Silent Hill 4 + codes.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Counter-Strike crack.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike crack.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\UT2004 + crack.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Sims 2 patch.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4 + codes.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Quake3_cheat.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Counter-Strike_nocd.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike_nocd.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Doom 3 hack.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\BattleField 1942(patch).exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File created	C:\Windows\win32dc\Counter-Strike serial.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike serial.exe	5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe

C:\Users\Admin\AppData\Local\Temp\5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe
"C:\Users\Admin\AppData\Local\Temp\5fa44abaf09e8776999531265a713ab19db59fd8c526bc318f59dade168d65c8.exe"
1⤵
- Drops file in Windows directory
PID:908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/908-54-0x0000000075131000-0x0000000075133000-memory.dmp

Filesize
8KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads