a57f22af3a7ccd6767407a6ea7df326fbcad806f77761c63cb90994abc25b974 | Triage

Analysis

max time kernel
143s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
03/12/2022, 22:37 UTC

Sharing

Report Analysis Logs

General

Target

a57f22af3a7ccd6767407a6ea7df326fbcad806f77761c63cb90994abc25b974.exe
Size

272KB
MD5

9c86a17f20093b7524829d2ddc75ecb4
SHA1

aee458162a2f0850cdb535fd220507fee8ea9b0a
SHA256

a57f22af3a7ccd6767407a6ea7df326fbcad806f77761c63cb90994abc25b974
SHA512

8b5a9969f472af81f5838940efe9a9ce2a4ce99d5f8f9e968364c7680f129234a7c868dcf7ac63b3c3131f3fcce69023fb41066703843a4c1237a5b39021e660
SSDEEP

6144:qyqgeXfYpBT3Ye77MF79n0KXs0YKMsHleE8wUV6Ed9E:qyqgeXfYTYe7InbDHCwab9

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\a57f22af3a7ccd6767407a6ea7df326fbcad806f77761c63cb90994abc25b974.exe
"C:\Users\Admin\AppData\Local\Temp\a57f22af3a7ccd6767407a6ea7df326fbcad806f77761c63cb90994abc25b974.exe"
1⤵
PID:4532

Network

DNS

151.122.125.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

151.122.125.40.in-addr.arpa

IN PTR

Response

93.184.221.240:80

260 B
5
52.109.13.64:443

40 B
1
93.184.220.29:80

322 B
7
93.184.221.240:80

322 B
7
104.80.225.205:443

322 B
7
209.197.3.8:80

46 B
40 B
1
1
13.69.239.73:443

322 B
7

8.8.8.8:53

151.122.125.40.in-addr.arpa

dns

73 B
159 B
1
1

DNS Request

151.122.125.40.in-addr.arpa

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4532-132-0x0000000000400000-0x0000000000481000-memory.dmp

Filesize
516KB

Download
memory/4532-133-0x0000000000400000-0x0000000000481000-memory.dmp

Filesize
516KB

Download
memory/4532-134-0x0000000000400000-0x0000000000481000-memory.dmp

Filesize
516KB

Download
memory/4532-135-0x00000000005A0000-0x00000000005DE000-memory.dmp

Filesize
248KB

Download
memory/4532-136-0x0000000000400000-0x0000000000481000-memory.dmp

Filesize
516KB

Download