c4ab1372a4a4bb3dae6a51a2fbd11267f0acdd9fed9ee2915a861b202e2ceecd | Triage

Analysis

max time kernel
147s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
15/10/2023, 19:43 UTC

Sharing

Report Analysis Logs

General

Target

b54cb2d2891cd3518d23507b3e6b0730_exe32.exe
Size

77KB
MD5

b54cb2d2891cd3518d23507b3e6b0730
SHA1

df77b888e1415aa771e5250a68aa1141d23c4fa3
SHA256

c4ab1372a4a4bb3dae6a51a2fbd11267f0acdd9fed9ee2915a861b202e2ceecd
SHA512

e9e810a02938ddb432db95150e7f6fda33528a69a1fc91fa03f057e42118b43c7053b251ca951d0dab3b106964f13e7a4eeacadd7796184a3ea82bf106011662
SSDEEP

1536:ovKqZZQs1ShQi7+q0birvqVO9ylgVZ9cmwFHQ+oko8AQcStxzF:ovZx1UGpiWVO9yl6cwr8AQftxR

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\b54cb2d2891cd3518d23507b3e6b0730_exe32.exe
"C:\Users\Admin\AppData\Local\Temp\b54cb2d2891cd3518d23507b3e6b0730_exe32.exe"
1⤵
PID:2564

Network

DNS

2.136.104.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.136.104.51.in-addr.arpa

IN PTR

Response
DNS

22.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.160.190.20.in-addr.arpa

IN PTR

Response
DNS

108.211.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

108.211.229.192.in-addr.arpa

IN PTR

Response
DNS

146.78.124.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.78.124.51.in-addr.arpa

IN PTR

Response
DNS

50.23.12.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

50.23.12.20.in-addr.arpa

IN PTR

Response
DNS

254.5.248.8.in-addr.arpa

Remote address:

8.8.8.8:53

Request

254.5.248.8.in-addr.arpa

IN PTR

Response
DNS

18.31.95.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

18.31.95.13.in-addr.arpa

IN PTR

Response
DNS

59.128.231.4.in-addr.arpa

Remote address:

8.8.8.8:53

Request

59.128.231.4.in-addr.arpa

IN PTR

Response
DNS

210.143.182.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.143.182.52.in-addr.arpa

IN PTR

Response

No results found

8.8.8.8:53

2.136.104.51.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

2.136.104.51.in-addr.arpa
8.8.8.8:53

22.160.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

22.160.190.20.in-addr.arpa
8.8.8.8:53

108.211.229.192.in-addr.arpa

dns

74 B
145 B
1
1

DNS Request

108.211.229.192.in-addr.arpa
8.8.8.8:53

146.78.124.51.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

146.78.124.51.in-addr.arpa
8.8.8.8:53

50.23.12.20.in-addr.arpa

dns

70 B
156 B
1
1

DNS Request

50.23.12.20.in-addr.arpa
8.8.8.8:53

254.5.248.8.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

254.5.248.8.in-addr.arpa
8.8.8.8:53

18.31.95.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

18.31.95.13.in-addr.arpa
8.8.8.8:53

59.128.231.4.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

59.128.231.4.in-addr.arpa
8.8.8.8:53

210.143.182.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

210.143.182.52.in-addr.arpa

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\My Downloads\DSL Modem Uncapper Key Generator.exe

Filesize
77KB

MD5
b54cb2d2891cd3518d23507b3e6b0730

SHA1
df77b888e1415aa771e5250a68aa1141d23c4fa3

SHA256
c4ab1372a4a4bb3dae6a51a2fbd11267f0acdd9fed9ee2915a861b202e2ceecd

SHA512
e9e810a02938ddb432db95150e7f6fda33528a69a1fc91fa03f057e42118b43c7053b251ca951d0dab3b106964f13e7a4eeacadd7796184a3ea82bf106011662

Download Submit
memory/2564-0-0x0000000000400000-0x0000000000411000-memory.dmp

Filesize
68KB

Download
memory/2564-101-0x0000000000400000-0x0000000000411000-memory.dmp

Filesize
68KB

Download