8a847c605bde4c3a8f73142c60ba675f71c56cfe874ee872a871e1f336a622da

Analysis

max time kernel
142s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
01-11-2023 23:19

Target

SecuriteInfo.com.BScope.TrojanDropper.Dinwod.16769.5740.exe
Size

2.9MB
MD5

1f587492bd6d6225cc925f18f0407c51
SHA1

cba138593246ea4e1d8572708f7cb7747ae0eb81
SHA256

8a847c605bde4c3a8f73142c60ba675f71c56cfe874ee872a871e1f336a622da
SHA512

9e23be44583afec87cf12e46af0e3b694a667be3ce14bfd8ec503246591519fe8a958f42a592627d9fd0e7b911e551e755d03f4184707eb836a56b782924bb37
SSDEEP

49152:B85/PEQ3oMcdqllfgaYChNxZvlv57O4qGgUcPL8Jr9hg6krnMRfKZhf:B85/8Q3ov4lfQCHZH7xtior9hg6koRy7

Score

4^/10

Drops file in Windows directory 2 IoCs

description	ioc	Process
File created	C:\Windows\Tasks\PPSProtect.job	SecuriteInfo.com.BScope.TrojanDropper.Dinwod.16769.5740.exe
File opened for modification	C:\Windows\Tasks\PPSProtect.job	SecuriteInfo.com.BScope.TrojanDropper.Dinwod.16769.5740.exe

C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.BScope.TrojanDropper.Dinwod.16769.5740.exe
"C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.BScope.TrojanDropper.Dinwod.16769.5740.exe"
1⤵
- Drops file in Windows directory
PID:4496