95f640cc8c4c93f3d45335dba5381515e0e2eb5c8848ab443f64f66aa673bfb3

Analysis

max time kernel
0s
max time network
79s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30/12/2023, 05:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

102efbc6c92c232aa554e3c40820fb85.exe
Size

84KB
MD5

102efbc6c92c232aa554e3c40820fb85
SHA1

e44fa6e1a06e2f4d2ed563ca8a7d44b67fb7321a
SHA256

95f640cc8c4c93f3d45335dba5381515e0e2eb5c8848ab443f64f66aa673bfb3
SHA512

812801262cc99bb8873b9feb7feb7406c90c35070fe928b3bf7bd1c0d6d18bc37acc218982e5040bcedd9b5171aebaeaf3da308e5beb086c457e8ebf8f01fc66
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzzRDyRcpJFnpz:lV2BZVPlFlnxClFvLLcA+sPDzzRD9Hnd

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 17 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\Doom 3_serial.exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\Doom 3_serial.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\Silent Hill 4_cdfix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\Quake3 cdfix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\Doom 3 + fix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\FlatOut_crack.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\FlatOut(fix).exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\FlatOut cdfix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\Sims 2_codes.exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\BattleField 1942_patch.exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\FlatOut(fix).exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\FlatOut_crack.exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4_cdfix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File opened for modification	C:\Windows\win32dc\Doom 3 + fix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\BattleField 1942_patch.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\Quake3 cdfix.exe	102efbc6c92c232aa554e3c40820fb85.exe
File created	C:\Windows\win32dc\DAoC(crack).exe	102efbc6c92c232aa554e3c40820fb85.exe

C:\Users\Admin\AppData\Local\Temp\102efbc6c92c232aa554e3c40820fb85.exe
"C:\Users\Admin\AppData\Local\Temp\102efbc6c92c232aa554e3c40820fb85.exe"
1⤵
- Drops file in Windows directory
PID:1052

C:\Windows\system32\sihost.exe
sihost.exe
1⤵
PID:712
- C:\Windows\explorer.exe
  explorer.exe /LOADSAVEDWINDOWS
  2⤵
  PID:408

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Windows\win32dc\FlatOut_crack.exe

Filesize
87KB

MD5
eb602f30863e59c9760b14fbee2ae8fe

SHA1
7ddedd6b456ee44c1dee3a546ab9881636cc9bb5

SHA256
60030631269b859d7b25e4da5b83e4c837357f9569cd9d694c767ef755ac3b8a

SHA512
e11cb94e0cbcbfb00bad267a761bb44c4bc505e2e40e9a576b14619d0513dabbcc05dec60524446a8a92f42c9a145987bce5b507f9a9361b698c36046f566579

Download Submit
memory/1052-16-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads