Analysis
-
max time kernel
501s -
max time network
493s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
25-05-2023 09:10
Behavioral task
behavioral1
Sample
传-票.exe
Resource
win7-20230220-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
传-票.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
传-票.exe
-
Size
387KB
-
MD5
4a399a170cba555d6eae002e7d8c447a
-
SHA1
88a16d21b22a2197bf767bdb8e21106d65a5efd6
-
SHA256
2ce68e824e25ba1a6bce8f9b58dc4997f6bbfc52de25445a5feb86adf42407a6
-
SHA512
d448ce119564282092c4431d08720a03a5ef15d2890a78106df5c75baac804c7d8019c0eeaf3b24f386f39f52366f04f25823b350b5c9ab9ac7ed5577a420584
-
SSDEEP
6144:MwkOSeenAT0dbzam9ioZp9nDMFlBqlLAdGln5bReSJN58BlwfTV5n:pkzA4am9ioZp5oo1yGlnRRZv5JfTV5n
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
传-票.exepid process 2900 传-票.exe 2900 传-票.exe