d4230cae5c3e1b11fca61a711e7f3886088f6728858108a6811670aa3616a57b

Submit
Reports

Overview

overview

Static

static

KMSAuto-Net.zip

windows7-x64

KMSAuto-Net.zip

windows10-2004-x64

KMSAuto Ne....1.zip

windows7-x64

KMSAuto Ne....1.zip

windows10-2004-x64

KMSAuto Ne....1.exe

windows7-x64

KMSAuto Ne....1.exe

windows10-2004-x64

KMSAuto Ne...et.exe

windows7-x64

KMSAuto Ne...et.exe

windows10-2004-x64

KMSAuto Ne...bg.txt

windows7-x64

KMSAuto Ne...bg.txt

windows10-2004-x64

KMSAuto Ne...cn.txt

windows7-x64

KMSAuto Ne...cn.txt

windows10-2004-x64

KMSAuto Ne...en.txt

windows7-x64

KMSAuto Ne...en.txt

windows10-2004-x64

KMSAuto Ne...es.txt

windows7-x64

KMSAuto Ne...es.txt

windows10-2004-x64

KMSAuto Ne...fr.txt

windows7-x64

KMSAuto Ne...fr.txt

windows10-2004-x64

KMSAuto Ne...ms.txt

windows7-x64

KMSAuto Ne...ms.txt

windows10-2004-x64

KMSAuto Ne...ru.txt

windows7-x64

KMSAuto Ne...ru.txt

windows10-2004-x64

KMSAuto Ne...ua.txt

windows7-x64

KMSAuto Ne...ua.txt

windows10-2004-x64

KMSAuto Ne...vi.txt

windows7-x64

KMSAuto Ne...vi.txt

windows10-2004-x64

Analysis

max time kernel
28s
max time network
33s
platform
windows7_x64
resource
win7-20230703-en
resource tags

arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
submitted
04/07/2023, 18:32

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

KMSAuto-Net.zip

Resource

win7-20230703-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

KMSAuto-Net.zip

Resource

win10v2004-20230621-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1.zip

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1.zip

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/KMSAuto Net 1.5.1.exe

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/KMSAuto Net 1.5.1.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/KMSAuto Net.exe

Resource

win7-20230621-en

evasion persistence

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral8

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/KMSAuto Net.exe

Resource

win10v2004-20230703-en

evasion persistence

windows10-2004-x64

15 signatures

150 seconds

Behavioral task

behavioral9

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_bg.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_bg.txt

Resource

win10v2004-20230621-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_cn.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_cn.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_en.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_en.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_es.txt

Resource

win7-20230621-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_es.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_fr.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_fr.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_kms.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_kms.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_ru.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_ru.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_ua.txt

Resource

win7-20230621-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_ua.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_vi.txt

Resource

win7-20230703-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_vi.txt

Resource

win10v2004-20230703-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

KMSAuto Net 2016 1.4.9 Portable + 1.5.1/readme/readme_bg.txt
Size

23KB
MD5

d6761e218d57b85236345f74ea44a684
SHA1

2ce086119d49b752d31c06559e3714e0c8902087
SHA256

e03107d2dec7eb59033b4d0cacf9dd320c3be1d9389295f87f069e667f138201
SHA512

ac6d3b695394019e60f51c007ec545d3f8d8e171e80be3d31d3618219af953b24a34782a65f97ac08badc2ebea42d8035fd0c18dd1a0bf59df0f7c753562649c
SSDEEP

384:hjtGVFvj2k/YhzBB8AwYtGEWZMZh5pJ3+cOZQXw/sDYXmhuVIrkCAnS7pdh1hzBl:whMjGgFwUGIrpA0f/QiVQ6

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\NOTEPAD.EXE "C:\Users\Admin\AppData\Local\Temp\KMSAuto Net 2016 1.4.9 Portable + 1.5.1\readme\readme_bg.txt"
1⤵
PID:2400

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads