97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f

Analysis

max time kernel
245s
max time network
333s
platform
windows7_x64
resource
win7-20221111-en
resource tags

arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
submitted
01/12/2022, 09:51

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
Size

89KB
MD5

0527a70510c065f2fa92ee797bf296a3
SHA1

b8eb91680b4932e1fbe69825a7edb54c991306df
SHA256

97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f
SHA512

ef73991dd76897ad7c96e0554b57ed926d23054a79fe101c40759b537d65b70adef666e3d8a1c5a42dcf711841ca9a802642cf4a63a21ae4b323af31932e2b1d
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzGvxuHPyn/WRNPfhRAZC:lV2BZVPlFlnxClFvLLcA+sPDzGvxMuwp

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 20 IoCs

description	ioc	Process
File opened for modification	C:\Windows\win32dc\Silent Hill 4 + fix.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\BattleField 1942 + hack.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\Quake3 + patch.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\UT2004 + cheat.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\FlatOut serial.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\FlatOut cheat.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\FlatOut serial.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\Silent Hill 4 + fix.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\BattleField 1942 + hack.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\DAoC_trainer.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\Doom 3 + hack.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\Doom 3 + hack.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\DAoC_trainer.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\Sims 2 crack.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\Sims 2 crack.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\UT2004_codes.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\UT2004_codes.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\FlatOut cheat.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File created	C:\Windows\win32dc\Quake3 + patch.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
File opened for modification	C:\Windows\win32dc\UT2004 + cheat.exe	97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe

C:\Users\Admin\AppData\Local\Temp\97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe
"C:\Users\Admin\AppData\Local\Temp\97df8a6dd7e967e37624d6ad712356293bc8be9e6da1807d5eba3dfff0f4ca6f.exe"
1⤵
- Drops file in Windows directory
PID:524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/524-54-0x00000000757E1000-0x00000000757E3000-memory.dmp

Filesize
8KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads