182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49

Analysis

max time kernel
154s
max time network
172s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
01-12-2022 09:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
Size

81KB
MD5

0dcddded958ad58a2b2dfb40217fb9b0
SHA1

77b9356eb6ae9f458098f9362bf44c5031af7af4
SHA256

182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49
SHA512

116f700ab3bc8a3543413be78d05be05943c4846b81badb14bd5e30b8b04b0dfe2e6f024876c1e0119a8ffcc6c338aac48df8daa5068bb6988ea58be7835f45d
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzGvxuqe7F2+wA:lV2BZVPlFlnxClFvLLcA+sPDzGvxV8b

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 18 IoCs

description	ioc	Process
File opened for modification	C:\Windows\win32dc\Half-Life 2_fix.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4 + cheat.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Half-Life 2_fix.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Silent Hill 4 + cheat.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Silent Hill 4_patch.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Half-Life 2(nocd).exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\DAoC + nocd.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\DAoC(patch).exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\DAoC(patch).exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Counter-Strike hack.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike hack.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Doom 3(serial).exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\FlatOut codes.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\FlatOut codes.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\Half-Life 2_serial.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File created	C:\Windows\win32dc\DAoC + nocd.exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2(nocd).exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
File opened for modification	C:\Windows\win32dc\Doom 3(serial).exe	182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe

C:\Users\Admin\AppData\Local\Temp\182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe
"C:\Users\Admin\AppData\Local\Temp\182ed88145c37b991958e8b175196bc500044bd358052d2abcf45d2854011a49.exe"
1⤵
- Drops file in Windows directory
PID:220

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads