Analysis
-
max time kernel
150s -
max time network
135s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system -
submitted
01-12-2022 20:12
Behavioral task
behavioral1
Sample
a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe
Resource
win10v2004-20220901-en
General
-
Target
a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe
-
Size
220KB
-
MD5
e82fc4c721f3506b966a8de0873fdefe
-
SHA1
08b33141c1ae507fcb67f1b02b5c273ebbb74970
-
SHA256
a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc
-
SHA512
6ab071e40da670c4152d9ec64eef227a4bf4f542439fe9986827a31339d12f189955b3721f0870bacff2806473604d8b745c520263298781efce6a7530e2e983
-
SSDEEP
3072:82UTmlhcoARX2SUB5JqJ0y0XT342Yz8WsM8InrnSYWcKN+GcJJJJJJJJJJJJJJJd:82UTzX1Y5JqJ0HXrO1wMTxWcKoH
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exepid process 4284 a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe 4284 a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe -
Suspicious behavior: RenamesItself 1 IoCs
Processes:
a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exepid process 4284 a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe"C:\Users\Admin\AppData\Local\Temp\a4316028afb86e906e946499fad2269dfa2ea5af207bb72e32d549110502e7dc.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: RenamesItself