ffd79daeb5402ded06d6bc9d3c3e16eef9c5e30c4f6dd89c2d4fecc215c0bbed

Analysis

max time kernel
17s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
19-01-2024 05:29

Target

66d074a30d124c64a11fdda4bcf41d72.exe
Size

83KB
MD5

66d074a30d124c64a11fdda4bcf41d72
SHA1

fb3000da40f3a9474011941fd751ef86f28f2044
SHA256

ffd79daeb5402ded06d6bc9d3c3e16eef9c5e30c4f6dd89c2d4fecc215c0bbed
SHA512

826f0357e6d7a823e90db3ab513deb197e8884ff0b3fb7e0c8e2d19e499169b926a06c39a2e70415bcfe131d3b7de51863b918894af78f3598efe0733c48673c
SSDEEP

1536:larO2R3XZVPlF31n1TClFvLLcAGJn+yRJCPDzfQtAin3O:lV2BZVPlFlnxClFvLLcA+sPDzfQ2F

Score

4^/10

Drops file in Windows directory 15 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\UT2004(hack).exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\Sims 2 patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\DAoC(crack).exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\Counter-Strike patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\Quake3_cdfix.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\Quake3 patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\FlatOut_cdfix.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File opened for modification	C:\Windows\win32dc\FlatOut_cdfix.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File opened for modification	C:\Windows\win32dc\Sims 2 serial.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\UT2004 patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File opened for modification	C:\Windows\win32dc\Counter-Strike patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File opened for modification	C:\Windows\win32dc\Quake3_cdfix.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File opened for modification	C:\Windows\win32dc\Quake3 patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\Doom 3_patch.exe	66d074a30d124c64a11fdda4bcf41d72.exe
File created	C:\Windows\win32dc\Sims 2 serial.exe	66d074a30d124c64a11fdda4bcf41d72.exe

C:\Users\Admin\AppData\Local\Temp\66d074a30d124c64a11fdda4bcf41d72.exe
"C:\Users\Admin\AppData\Local\Temp\66d074a30d124c64a11fdda4bcf41d72.exe"
1⤵
- Drops file in Windows directory
PID:3132

C:\Windows\win32dc\Sims 2 serial.exe

Filesize
87KB

MD5
a6127c6bfc09ba96eb819e04dda4e0b7

SHA1
89af16e87896de8a93a897ccc9399595ed5da3c0

SHA256
f76f275c3530fc9364efca90c505e0a07b8969af0003200f7ad415390707371a

SHA512
8698c7a537c7e58971df5e565b19b45c3d52213d64f0e2e5c69adc7eb00030a09e3e7e1dc2a1d5ffef2201c8fd8aa9fd65d57a7717833f3d71a29636cb8256dc

Download Submit
memory/3132-14-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download