fcda32c35cbcddf0af9b477295fc85020f66bd6ab0f447d1fd8b506f883e349b

Analysis

max time kernel
142s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
19-07-2023 08:11

Target

Ship2005Group20190906.exe
Size

8.2MB
MD5

cbe695fac40f1af73ab811c903ecd842
SHA1

4664d0438fadc371f30acc38c29fc843137e5717
SHA256

fcda32c35cbcddf0af9b477295fc85020f66bd6ab0f447d1fd8b506f883e349b
SHA512

790e7ec9f400ecbbf08bd0b992f561e86b2256a9520c6e77444d097f158b94db516231035ac02bbd6f6534ed6356037a8283408193809dce2dc62cfbc8e211a7
SSDEEP

196608:WVeSfoM52PVRi1Dm4P4lqo3E2pwVVUcqi1GQzqrmI5t/QuuFi7nMZJ:WVeSfo5VR2DnP4lqP269qi1nzqiio/FN

Score

1^/10

Modifies Control Panel 3 IoCs

evasion

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-1420546310-613437930-2990200354-1000\Control Panel\International\sShortDate = "yyyy.MM.dd"	Ship2005Group20190906.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1420546310-613437930-2990200354-1000\Control Panel\International\iDate = "2"	Ship2005Group20190906.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1420546310-613437930-2990200354-1000\Control Panel\International\sDate = "."	Ship2005Group20190906.exe

C:\Users\Admin\AppData\Local\Temp\Ship2005Group20190906.exe
"C:\Users\Admin\AppData\Local\Temp\Ship2005Group20190906.exe"
1⤵
- Modifies Control Panel
PID:4948

memory/4948-133-0x0000000000400000-0x00000000033AE000-memory.dmp

Filesize
47.7MB

Download
memory/4948-134-0x0000000000400000-0x00000000033AE000-memory.dmp

Filesize
47.7MB

Download
memory/4948-135-0x0000000005600000-0x0000000005601000-memory.dmp

Filesize
4KB

Download
memory/4948-136-0x0000000000400000-0x00000000033AE000-memory.dmp

Filesize
47.7MB

Download