340c832fad3970b234c770a869d614a4222984c977bb8066ec5d59b210ef3446

Analysis

max time kernel
2s
max time network
16s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
11/01/2024, 23:08

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

54d5d678423e7e92514ecc8fad3e95aa.exe
Size

77KB
MD5

54d5d678423e7e92514ecc8fad3e95aa
SHA1

7950eaa88b749936efe57e0bb0c060798698fc05
SHA256

340c832fad3970b234c770a869d614a4222984c977bb8066ec5d59b210ef3446
SHA512

bf2eb905c194c8e490214f5f0878b450f2a5b38d8baa253e2f67201a117091ddb920809aa35d44063f3360f9c3bb96b66894828e839e2387f0d382180bec182a
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzVolRkh:lV2BZVPlFlnxClFvLLcA+sPDzk8

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 16 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\Sims 2(crack).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\Sims 2(crack).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\BattleField 1942(cheat).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\BattleField 1942(cheat).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4 + nocd.exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\BattleField 1942_crack.exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\Counter-Strike(fix).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\Doom 3(serial).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\Counter-Strike(patch).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\Silent Hill 4 + nocd.exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike(patch).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\Silent Hill 4(trainer).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2(nocd).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File opened for modification	C:\Windows\win32dc\Silent Hill 4(trainer).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\Half-Life 2(nocd).exe	54d5d678423e7e92514ecc8fad3e95aa.exe
File created	C:\Windows\win32dc\Doom 3(serial).exe	54d5d678423e7e92514ecc8fad3e95aa.exe

C:\Users\Admin\AppData\Local\Temp\54d5d678423e7e92514ecc8fad3e95aa.exe
"C:\Users\Admin\AppData\Local\Temp\54d5d678423e7e92514ecc8fad3e95aa.exe"
1⤵
- Drops file in Windows directory
PID:2440

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Windows\win32dc\Counter-Strike(fix).exe

Filesize
77KB

MD5
54d5d678423e7e92514ecc8fad3e95aa

SHA1
7950eaa88b749936efe57e0bb0c060798698fc05

SHA256
340c832fad3970b234c770a869d614a4222984c977bb8066ec5d59b210ef3446

SHA512
bf2eb905c194c8e490214f5f0878b450f2a5b38d8baa253e2f67201a117091ddb920809aa35d44063f3360f9c3bb96b66894828e839e2387f0d382180bec182a

Download Submit
memory/2440-17-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads