Analysis
-
max time kernel
135s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20230221-en -
resource tags
arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system -
submitted
02-06-2023 16:30
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
net.exe
Resource
win7-20230220-en
windows7-x64
7 signatures
150 seconds
Behavioral task
behavioral2
Sample
net.exe
Resource
win10v2004-20230221-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
net.exe
-
Size
925KB
-
MD5
eff776dee6b37897f2b727bc9f029470
-
SHA1
6a17cf16a872e9ed38b88851110e8d87325b0da7
-
SHA256
0c4607e6f1cc4bc8222962319c616f2f9a494805874e8fe7a89f2bbaced11f25
-
SHA512
c54ca9d11ddc8948e363a41736e951bbb06ab8632b619077b84244b1c84c5ded144a8eca559ccfcb0364df052b82d8550d5932b9311db93f70548f3429d0d9bb
-
SSDEEP
24576:NVYE9lqHmnWc9yOAwzO6/IWnbGaT3egp4RGqwfnP:YE9c8y1wbIsz3Bp4RGqwfnP
Score
6/10
Malware Config
Signatures
-
Looks up external IP address via web service 2 IoCs
Uses a legitimate IP lookup service to find the infected system's external IP.
Processes:
flow ioc 5 api.ipify.org 3 api.ipify.org -
Runs net.exe