e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4

Analysis

max time kernel
154s
max time network
33s
platform
windows7_x64
resource
win7-20221111-en
resource tags

arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
submitted
01/12/2022, 09:53

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
Size

80KB
MD5

09e77a7056fac28aa2b9f169c981a1cc
SHA1

967e60440fdf965ce41727f705f3151bc4efd52c
SHA256

e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4
SHA512

d17977f4bb6c46c282e6eed11bdb1c8e09532c588fd34688bae0ad4e9142da9a3b259ed014b012f6abea45248d7d9b4d71f8ee9a5058d513398f5436e2cd3970
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzrTn/X8WKKWj:lV2BZVPlFlnxClFvLLcA+sPDzPnfKj

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 18 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\Half-Life 2(nocd).exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\Quake3_cdfix.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\FlatOut + trainer.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\UT2004 + cdfix.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\Doom 3_serial.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\Doom 3 + crack.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\BattleField 1942(serial).exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\UT2004 + cdfix.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\Half-Life 2 + patch.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\Doom 3 + crack.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\Sims 2 + hack.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\Sims 2 + hack.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2 + patch.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\Doom 3_serial.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\Counter-Strike cdfix.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2(nocd).exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File created	C:\Windows\win32dc\Quake3_cdfix.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
File opened for modification	C:\Windows\win32dc\FlatOut + trainer.exe	e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe

C:\Users\Admin\AppData\Local\Temp\e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe
"C:\Users\Admin\AppData\Local\Temp\e42382bbda5416302b483562cfee27c7908e4a0dfea145362ad9536c6fb403f4.exe"
1⤵
- Drops file in Windows directory
PID:1940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1940-54-0x0000000075761000-0x0000000075763000-memory.dmp

Filesize
8KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads