Overview

overview

3

Static

static

3

freespoof_...1).exe

windows7-x64

1

freespoof_...1).exe

windows10-2004-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    100s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-05-2023 12:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    freespoof_[unknowncheats.me]_ (1).exe

  • Size

    2.7MB

  • MD5

    e001605fa695282a2d3170d8d9e956c9

  • SHA1

    4544155daae0335ada1d05a509e43b8c0434ffc8

  • SHA256

    003dc05c74dedfb83f73982173d2ed293a84a2af8a7ef8b6e6ff928119859a2e

  • SHA512

    11642791791255eea62db5b5058e651329d9b537cc9ffd734702b5bf5207351ecc3bbdb3499acb3dc43e7937da8efd9e23b1e1ccfaa6a077bd747a40926d40d6

  • SSDEEP

    49152:wy8J1anDS2TFQTnQT2QT9QT1QTXCbAAKrqgvWAtY3o41MBXcOz5dD:CxYw1aCkX23o41MBXc4D

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\freespoof_[unknowncheats.me]_ (1).exe
    "C:\Users\Admin\AppData\Local\Temp\freespoof_[unknowncheats.me]_ (1).exe"
    1⤵
      PID:3596
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:4460
      • C:\Users\Admin\AppData\Local\Temp\freespoof_[unknowncheats.me]_ (1).exe
        "C:\Users\Admin\AppData\Local\Temp\freespoof_[unknowncheats.me]_ (1).exe"
        1⤵
          PID:568
        • C:\Users\Admin\AppData\Local\Temp\freespoof_[unknowncheats.me]_ (1).exe
          "C:\Users\Admin\AppData\Local\Temp\freespoof_[unknowncheats.me]_ (1).exe"
          1⤵
            PID:2536

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads