9d6cbe10eb774bdafa9f34a374b224198b82cba5516412d5463cd84da979307b

Analysis

max time kernel
99s
max time network
92s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
11/02/2023, 09:42

Target

DHL Original Documents.exe
Size

1.7MB
MD5

13ec30f42d53faabbd8fb6e8b2330b20
SHA1

83b7d48d36322f65ce94860617a0ce5b2627e573
SHA256

9d6cbe10eb774bdafa9f34a374b224198b82cba5516412d5463cd84da979307b
SHA512

274ac1237c978a144c1c13796bcf07130b213a674b8d595b79a7474cc263ddf4ba20d0f709c40fa2d67ba4aecd6d2961bee8743de0bc63405bc5ab543018050d
SSDEEP

24576:PGAIUP/CgC8+YlJGuKiCfnQtxvezi6cnP32qejmhn4Q/1IZ1om5mog4MHqVMBie1:htzg1oumhP32qejm2AWHMKwWrIR

Score

1^/10

Suspicious behavior: EnumeratesProcesses 5 IoCs

C:\Users\Admin\AppData\Local\Temp\DHL Original Documents.exe
"C:\Users\Admin\AppData\Local\Temp\DHL Original Documents.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:1780

memory/1780-54-0x0000000000540000-0x00000000006B2000-memory.dmp

Filesize
1.4MB

Download
memory/1780-55-0x00000000762F1000-0x00000000762F3000-memory.dmp

Filesize
8KB

Download
memory/1780-56-0x0000000000540000-0x00000000006B2000-memory.dmp

Filesize
1.4MB

Download
memory/1780-57-0x000000000D660000-0x000000000D8F8000-memory.dmp

Filesize
2.6MB

Download
memory/1780-58-0x000000000D4F0000-0x000000000D6B4000-memory.dmp

Filesize
1.8MB

Download
memory/1780-59-0x0000000000540000-0x00000000006B2000-memory.dmp

Filesize
1.4MB

Download
memory/1780-60-0x0000000000540000-0x00000000006B2000-memory.dmp

Filesize
1.4MB

Download