c3cfded46453b881db01b79c1563e53a62d4e0bad152e04238ca8d40abfd9324 | Triage

Analysis

max time kernel
59s
max time network
185s
platform
windows10-2004_x64
resource
win10v2004-20230221-en
resource tags

arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
submitted
30/03/2023, 08:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

setup.exe
Size

1023.0MB
MD5

895755bf3f8ca19bb2038cc633f72c72
SHA1

34c2e7d40f1c09a8c0b189cf9b54b156ae414543
SHA256

0f6d4d6e0b362760c2f67f1f9c295e1dc0c04cf33fd5a7b826c5fd2129f14f11
SHA512

bbb575e62eb59dfe0fee4d5b96789faf739f0702cc9d6d6ef451b59795c154d3e2f7a7e2b29ebb074df470163d4868f34501f079720753f6e3c16023f05fda5f
SSDEEP

393216:/AUQ1ibcrDzKmwGhyF4b7Ff+6dUovXi08VeS:oT1ibIe4bBGaXiteS

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2476	setup.exe
2476	setup.exe

C:\Users\Admin\AppData\Local\Temp\setup.exe
"C:\Users\Admin\AppData\Local\Temp\setup.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:2476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2476-133-0x0000000001A80000-0x0000000001A81000-memory.dmp

Filesize
4KB

Download
memory/2476-134-0x0000000000400000-0x00000000019A5000-memory.dmp

Filesize
21.6MB

Download