Analysis
-
max time kernel
118s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20230831-en -
resource tags
arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system -
submitted
15/09/2023, 14:47
Static task
static1
Behavioral task
behavioral1
Sample
vmware.exe
Resource
win7-20230831-en
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
vmware.exe
Resource
win10v2004-20230915-en
1 signatures
150 seconds
General
-
Target
vmware.exe
-
Size
2.1MB
-
MD5
da9bb486b14c37a771d6f7bf208a86d3
-
SHA1
23c2671b2558f00738c3010b00154aa059d774ad
-
SHA256
19bd8a90a779a9b35117f4e814de20661e32ea07a6721a2a13858473be8d4a36
-
SHA512
82284d3bf3692f187ddbb60e6f8beaa928f8ca23146423d681f53dddda8a8b73bb16159eb7e8572cf3a2cd24daaefd137ac6badfe67ff08d85502198711ee573
-
SSDEEP
49152:r0WtLrwaCUzBMoaSnRUntexlBbt41aCq4:Yynw3U1aqjBb
Score
1/10
Malware Config
Signatures
Processes
-
C:\Users\Admin\AppData\Local\Temp\vmware.exe"C:\Users\Admin\AppData\Local\Temp\vmware.exe"1⤵PID:2288
-
C:\Windows\SysWOW64\DllHost.exeC:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}1⤵PID:2488
-
C:\Windows\SysWOW64\DllHost.exeC:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}1⤵PID:884
-
C:\Windows\SysWOW64\DllHost.exeC:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}1⤵PID:1388