Analysis
-
max time kernel
150s -
max time network
126s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system -
submitted
04-07-2023 01:37
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
PenguinsLoader.exe
Resource
win7-20230703-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
PenguinsLoader.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
3 signatures
150 seconds
General
-
Target
PenguinsLoader.exe
-
Size
3.3MB
-
MD5
96d5903ffb0f6ff97a32e8cdaca7b50b
-
SHA1
94265c31e3b75b0ea5766cf8a07e739fd9f7ce46
-
SHA256
b59c5e54fd1c6839de70b97cca36c65ee82130286e11ae7eb56df98fb945705e
-
SHA512
dfcd7cb38e5e843194afcdd5c165485fb09d1f74501170f76e9f9f5cd9efc383347ea6d3150e6d0d7c53e3d426565a73dac7395f9578e237e62b5889a5167514
-
SSDEEP
49152:pXGtlqkmsjaYgEh19vs5fR6xmaamix4BRXxvRRiHnh0X:pqx9sqddx5d
Score
8/10
Malware Config
Signatures
-
Downloads MZ/PE file
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe 212 PenguinsLoader.exe -
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 212 PenguinsLoader.exe