Analysis
-
max time kernel
240s -
max time network
370s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
04-12-2022 17:31
Behavioral task
behavioral1
Sample
cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308.exe
Resource
win10v2004-20221111-en
General
-
Target
cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308.exe
-
Size
146KB
-
MD5
9d9ff31b49bbabbd33c529a166d83618
-
SHA1
b0d97aa6647ee23af5f2bfebad02466ca70481fb
-
SHA256
cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308
-
SHA512
e2ae9698a8e91e4a3efbbc39e521d7b8195b5f6733d449929f44ee0d7728786333ade7ff82a7937a7b922dc4d9bbd883e12c50466b766151c172a30951d353b0
-
SSDEEP
3072:IgEehZ6lngDMYUxHkq15yoY0f4S07tVaTqXuz1KJoZAo5LH5u:IgEehkHkmMoY0xoV00uz1PZAS
Malware Config
Signatures
-
Drops file in Windows directory 2 IoCs
Processes:
cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308.exedescription ioc process File created C:\windows\xinstall2468400.dll cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308.exe File opened for modification C:\windows\xinstall2468400.dll cb4c6e8e022a23ee7e61a0463215ad3be51deed4d5004f1215618312c586a308.exe -
Suspicious behavior: LoadsDriver 5 IoCs
Processes:
pid 4 4 4 4 4