165f11a46f61364de75b7505518165b87e05426999530759f1b68b06a0738676

Analysis

max time kernel
149s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
26/12/2023, 14:30

Target

75b01ca4a1d323aca6889ab6b38659aa.exe
Size

222KB
MD5

75b01ca4a1d323aca6889ab6b38659aa
SHA1

776e61b4414e42cb68b22646281eb7ec22973fc7
SHA256

165f11a46f61364de75b7505518165b87e05426999530759f1b68b06a0738676
SHA512

e83bfe9cd4ddf5b2d3322436be93a55b26c8d5e28315724dcddc3f677b0df5d5f9cd7bab31741a2e180e0cd05ab4851300e4e1af6c4877f6f7ef907da344f954
SSDEEP

3072:GjYE45QJdimSCgkEFgnFpqiyzt4zfNGDCGUTieIH3ucG1D/77ObPz8Y:nEuQJYmS2pqDx8PGUTieI/GtPGPz8Y

Score

4^/10

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\Tasks\PHPTouch.job	75b01ca4a1d323aca6889ab6b38659aa.exe

C:\Users\Admin\AppData\Local\Temp\75b01ca4a1d323aca6889ab6b38659aa.exe
"C:\Users\Admin\AppData\Local\Temp\75b01ca4a1d323aca6889ab6b38659aa.exe"
1⤵
- Drops file in Windows directory
PID:5388

memory/5388-3-0x0000000000BE0000-0x0000000000BE1000-memory.dmp

Filesize
4KB

Download
memory/5388-2-0x0000000000BD0000-0x0000000000BD1000-memory.dmp

Filesize
4KB

Download
memory/5388-9-0x0000000000C40000-0x0000000000C60000-memory.dmp

Filesize
128KB

Download
memory/5388-5-0x0000000000D50000-0x0000000000D7F000-memory.dmp

Filesize
188KB

Download
memory/5388-4-0x0000000000C40000-0x0000000000C60000-memory.dmp

Filesize
128KB

Download
memory/5388-17-0x0000000000C40000-0x0000000000C60000-memory.dmp

Filesize
128KB

Download
memory/5388-1-0x0000000000BC0000-0x0000000000BC1000-memory.dmp

Filesize
4KB

Download
memory/5388-0-0x0000000000BB0000-0x0000000000BB1000-memory.dmp

Filesize
4KB

Download