8b20c4f222723037b9df600a444b358820f9aa1e51c8e9553cb5465859f9d325

Analysis

max time kernel
7s
max time network
14s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
10-06-2023 05:30

Sharing

Reason

platform exec: image=C:\Users\Admin\AppData\Local\Temp\Sounds\Drivers\NNSPop3\WVista\NNSPop3.exe command="C:\Users\Admin\AppData\Local\Temp\Sounds\Drivers\NNSPop3\WVista\NNSPop3.exe" wdir=C:\Users\Admin\AppData\Local\Temp\Sounds\Drivers\NNSPop3\WVista Payload error: The %1 application cannot be run in Win32 mode.

Report Analysis Logs

General

Target

Sounds/Drivers/NNSPop3/WVista/NNSPop3.exe
Size

134KB
MD5

8347e712bb4d547312581a3ccab4eacd
SHA1

0ed815763fa439541ca9094ab7182b6209f43ab3
SHA256

814e7fdf2a709ed818a15ad6f431b09ccf36d36fee40041bb6f10647c54fb0a2
SHA512

cbbfbff6f610fb2e6c84cd7422b47a01c6f7ca693e43d1dff9d01ab3923953d40e9dabff21c9251fc843324941a746b95e37256cb5fdce27ce671462d8427d38
SSDEEP

3072:ek2RHlIdsxt49agKzw31P4uNNmh1YvQbOR1uQrxD:ekel9w31P43F+

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\Sounds\Drivers\NNSPop3\WVista\NNSPop3.exe
"C:\Users\Admin\AppData\Local\Temp\Sounds\Drivers\NNSPop3\WVista\NNSPop3.exe"
1⤵
PID:4788

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4788-133-0x0000000000010000-0x0000000000036000-memory.dmp

Filesize
152KB

Download