7820d83e6e9b80944e36009ff2295560c8b817bc18c30cee1dbc2c74997364a2

Submit
Reports

Overview

overview

Static

static

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.dll

windows7-x64

FD Tool 3....d/.dll

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.dll

windows7-x64

FD Tool 3....d/.dll

windows10-2004-x64

FD Tool 3....d/.dll

windows7-x64

FD Tool 3....d/.dll

windows10-2004-x64

FD Tool 3....d/.dll

windows7-x64

FD Tool 3....d/.dll

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

FD Tool 3....d/.exe

windows7-x64

FD Tool 3....d/.exe

windows10-2004-x64

Resubmissions

13/01/2023, 02:01

230113-cfl75shb5w 8

13/01/2023, 00:29

230113-asz9esff81 8

Analysis

max time kernel
19s
max time network
36s
platform
windows7_x64
resource
win7-20221111-en
resource tags

arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
submitted
13/01/2023, 00:29

Sharing

Copy URL

Twitter E-mail

Static task

static1

upx

2 signatures

Behavioral task

behavioral1

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Errors

Reason

platform exec: image=C:\Users\Admin\AppData\Local\Temp\FD Tool 3.8 (Bypassfrpfiles.com)\FD Tool 3.8 AsiaTelecom No.1 Call 18001037001\FD Tool 3.8 Cracked\.exe command="C:\Users\Admin\AppData\Local\Temp\FD Tool 3.8 (Bypassfrpfiles.com)\FD Tool 3.8 AsiaTelecom No.1 Call 18001037001\FD Tool 3.8 Cracked\.exe" wdir=C:\Users\Admin\AppData\Local\Temp\FD Tool 3.8 (Bypassfrpfiles.com)\FD Tool 3.8 AsiaTelecom No.1 Call 18001037001\FD Tool 3.8 Cracked Payload error: The %1 application cannot be run in Win32 mode.

Report Analysis Logs

General

Target

FD Tool 3.8 (Bypassfrpfiles.com)/FD Tool 3.8 AsiaTelecom No.1 Call 18001037001/FD Tool 3.8 Cracked/.exe
Size

12KB
MD5

1d19770f88fa22dacb7f488ea8f8ee6b
SHA1

b3a544184357759e3ad10a3ff321ba1c91d73513
SHA256

ad100c774058cf878b6006518f3dcdbdee475f3c9808fc5d844947d9c305fae5
SHA512

e91116f600c970f2da9e36436516d48484939bc3cacfae515a99b9993aff0c05ca51942b9aa24acdbb182c79636c24a6af4a12dc1854eba1d6839a5850d9f5c4
SSDEEP

192:cGyq3LPYg8QLP/URvMBFFs2LBp+TZLkN+PxYHIVn0yLR1NXl5HU:W6LPG0qvMBLs2LBp+TZLkWxwhyFHU

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\FD Tool 3.8 (Bypassfrpfiles.com)\FD Tool 3.8 AsiaTelecom No.1 Call 18001037001\FD Tool 3.8 Cracked\.exe
"C:\Users\Admin\AppData\Local\Temp\FD Tool 3.8 (Bypassfrpfiles.com)\FD Tool 3.8 AsiaTelecom No.1 Call 18001037001\FD Tool 3.8 Cracked\.exe"
1⤵
PID:1324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1324-54-0x0000000000010000-0x000000000001B000-memory.dmp

Filesize
44KB

Download