Overview

overview

1

Static

static

1

735b42d4c7...32.exe

windows7-x64

735b42d4c7...32.exe

windows10-2004-x64

Analysis

  • max time kernel
    1s
  • max time network
    4s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/06/2023, 05:42 UTC

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\735b42d4c7f02e5c15254aae09af2be6a29efbf2190fe57245f861b5d3782732.exe command="C:\Users\Admin\AppData\Local\Temp\735b42d4c7f02e5c15254aae09af2be6a29efbf2190fe57245f861b5d3782732.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.
Report Analysis Logs

General

  • Target

    735b42d4c7f02e5c15254aae09af2be6a29efbf2190fe57245f861b5d3782732.exe

  • Size

    5.6MB

  • MD5

    08215273efa52bb9e33b6bcc9b345bbb

  • SHA1

    c7043d17f1ae5f4234d23ed506b49b221fe3d7e2

  • SHA256

    735b42d4c7f02e5c15254aae09af2be6a29efbf2190fe57245f861b5d3782732

  • SHA512

    304fef63f7a3e5a12db905b00accce9767c3f84ae07cf22f1d8b5f868abcd75610d329ef342ed5ab43be284b63b413f092487db20fd509070d9562be1427a315

  • SSDEEP

    98304:2zCeZFiI9QNiwkEKHJkGcvKD6g04ZNgLhWqhtmWGKYlR622MU:2fIIQJLUcIe4intmRKY+DT

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\735b42d4c7f02e5c15254aae09af2be6a29efbf2190fe57245f861b5d3782732.exe
    "C:\Users\Admin\AppData\Local\Temp\735b42d4c7f02e5c15254aae09af2be6a29efbf2190fe57245f861b5d3782732.exe"
    1⤵
      PID:4836

    Network

    • flag-us
      DNS
      14.110.152.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      14.110.152.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      84.150.43.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      84.150.43.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      164.2.77.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      164.2.77.40.in-addr.arpa
      IN PTR
      Response
    • 40.77.2.164:443
      tls
      594 B
       3
    • 20.190.159.23:443
      tls
      792 B
       4
    • 209.197.3.8:80
      52 B
       52 B
       1
      1
    • 8.8.8.8:53
      14.110.152.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      14.110.152.52.in-addr.arpa

    • 8.8.8.8:53
      84.150.43.20.in-addr.arpa
      dns
      71 B
       157 B
       1
      1

      DNS Request

      84.150.43.20.in-addr.arpa

    • 8.8.8.8:53
      164.2.77.40.in-addr.arpa
      dns
      70 B
       144 B
       1
      1

      DNS Request

      164.2.77.40.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.