e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2

Analysis

max time kernel
41s
max time network
33s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
19-06-2023 20:20

Target

e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe
Size

983KB
MD5

04ba7820532b7f39fbad1ea64bb6f769
SHA1

fd66df1afa6e59f2f8ae4059e4d43346ff785413
SHA256

e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2
SHA512

3049279b5ef7436c1541888313e9b496ffbe16e023ac8269de43ef512b0b7a69211516618bc79ed61e3be87d8f4fe86c49505c348504c6a9849ae9cdd46281ce
SSDEEP

24576:JVJNpHkRf+yMor73ZPUkG9eTUzbwcWCgKxnRfgIa6Sjt:3XpHkRfdv3ZBG9UU//gKxnhgLb

Score

1^/10

Modifies Control Panel 3 IoCs

evasion

Processes:

e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe

description	ioc	process
Set value (str)	\REGISTRY\USER\S-1-5-21-2961826002-3968192592-354541192-1000\Control Panel\International\sDate = "-"	e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2961826002-3968192592-354541192-1000\Control Panel\International\sShortDate = "yyyy-MM-dd"	e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2961826002-3968192592-354541192-1000\Control Panel\International\iDate = "2"	e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe

C:\Users\Admin\AppData\Local\Temp\e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe
"C:\Users\Admin\AppData\Local\Temp\e99d2222bb398af159c399f7d6ad087f13e34ce299a7f413951f7074497ba9e2.exe"
1⤵
- Modifies Control Panel
PID:1724

memory/1724-54-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download
memory/1724-56-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download
memory/1724-55-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download
memory/1724-57-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download
memory/1724-58-0x0000000000220000-0x0000000000221000-memory.dmp

Filesize
4KB

Download
memory/1724-59-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download
memory/1724-61-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download
memory/1724-63-0x0000000000400000-0x000000000072F000-memory.dmp

Filesize
3.2MB

Download