3a7fb4fd18edbcb1a6f4c57e02bf4f826b9a13e43805f0ad901c60dea833aee1

Analysis

max time kernel
162s
max time network
164s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
31/12/2023, 04:49

Target

28d4ce157a72aa8155d95a3c545ffab2.exe
Size

46KB
MD5

28d4ce157a72aa8155d95a3c545ffab2
SHA1

6a565218ce5442687d47324280ae45be7dc47bc4
SHA256

3a7fb4fd18edbcb1a6f4c57e02bf4f826b9a13e43805f0ad901c60dea833aee1
SHA512

8520321bb86ac07dd743b83c3d8304ab394caa5c3fe5066cfe7dbc9f1b446bb66b243ef6be6a03a0b35599148abca38ac12f2b2be9daa85e345f798145ca1b29
SSDEEP

768:NNxYJ5tS57Xa1AMbUMA/0AJhHtAMkZpZmnABdRmUV/ccDUsijeSls:NNxYJj2a1H0/ZhM3JBdRzRccCl

Score

4^/10

Drops file in Windows directory 2 IoCs

description	ioc	Process
File created	C:\Windows\systen.exe	28d4ce157a72aa8155d95a3c545ffab2.exe
File created	C:\Windows\winmp.exe	28d4ce157a72aa8155d95a3c545ffab2.exe

C:\Users\Admin\AppData\Local\Temp\28d4ce157a72aa8155d95a3c545ffab2.exe
"C:\Users\Admin\AppData\Local\Temp\28d4ce157a72aa8155d95a3c545ffab2.exe"
1⤵
- Drops file in Windows directory
PID:5104

C:\Windows\systen.exe

Filesize
435KB

MD5
a20d6ae1fdceb7133e61346037bbcb40

SHA1
dea230309c397a299b9fa6215287aa2ee55124f9

SHA256
ca550d76fc77328c826931566a8609066b0a2d3eab910b533bf83f4bced61709

SHA512
950d87cfb64a96731a96c2c3c6e7e4642923671408fb53ca873da14855755400f765afee82292707d86776557ce50caf6eb7cf5d47fa60af4b261e5a6533e32f

Download Submit
memory/5104-0-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download
memory/5104-1-0x0000000002160000-0x0000000002162000-memory.dmp

Filesize
8KB

Download
memory/5104-12-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download
memory/5104-16-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download
memory/5104-23-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download