55e4ce3fe726043070ecd7de5a74b2459ea8bed19ef2a36ce7884b2ab0863047

Analysis

max time kernel
1s
max time network
18s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
30-01-2024 14:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

AnyDesk.exe
Size

5.0MB
MD5

a21768190f3b9feae33aaef660cb7a83
SHA1

24780657328783ef50ae0964b23288e68841a421
SHA256

55e4ce3fe726043070ecd7de5a74b2459ea8bed19ef2a36ce7884b2ab0863047
SHA512

ca6da822072cb0d3797221e578780b19c8953e4207729a002a64a00ced134059c0ed21b02572c43924e4ba3930c0e88cd2cdb309259e3d0dcfb0c282f1832d62
SSDEEP

98304:NzTZ3cINQscs0m++LNkT6OpwDGUUH57yvZ/49Mr8EO3QhA9Kq:Nzt3cINQscNmvLCwDkHEvZ/4R79x

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\AnyDesk.exe
"C:\Users\Admin\AppData\Local\Temp\AnyDesk.exe"
1⤵
PID:3024
- C:\Users\Admin\AppData\Local\Temp\AnyDesk.exe
  "C:\Users\Admin\AppData\Local\Temp\AnyDesk.exe" --local-service
  2⤵
  PID:2120
- C:\Users\Admin\AppData\Local\Temp\AnyDesk.exe
  "C:\Users\Admin\AppData\Local\Temp\AnyDesk.exe" --local-control
  2⤵
  PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\AnyDesk\ad.trace

Filesize
6KB

MD5
4417129df36462ccbb58c0c131ea6737

SHA1
78ac31d8eb3cd57daff50132df6e1d86e139e1fd

SHA256
e05a02d55bc5921bf3b4639e82678baa67ea212a420780c5e0ec22e4e53d67a2

SHA512
61fb133240700c515dea2a92bcbb423c6cd04c5a528472b177aa7f2ab14d866fdbf7a6aacefda529ffbfbe4812c566a0f797119e2bde8db2887ee2a15b07553f

Download Submit
C:\Users\Admin\AppData\Roaming\AnyDesk\ad.trace

Filesize
6KB

MD5
3651e897501fe5981b17d0de4fa212de

SHA1
10f9fa4d9140178bb03a7262db8da0fa0a805301

SHA256
d0662d7974afdd05dd2c14dab2c52b99bb06bc2df58afd2a460e78250566ffb9

SHA512
cf822bbf9239fb8824ce08e7a7a67c33d0bb12110cf03dc37c97a3977fe90d48060452a703a9d928baf06630725b7bbace88bc0b66cf20aebbfc3a8238502c6c

Download Submit
C:\Users\Admin\AppData\Roaming\AnyDesk\system.conf

Filesize
367B

MD5
313875e5f6078b10cc8b77a5aa1f82a3

SHA1
34b0c203e1f1f219148a73486fb5a87131a434b6

SHA256
2cde70747dc8786afb4c87b8b1527622855795ca28be3363bf3a3ea2dc1df3dd

SHA512
5831b9791f7ed5073e8ae44a52f7cf218079b11b17363c438269a47213f44aa88ddd0294fdf91425259be038bf70c70934024d27158c9f13f2b071ee2b00071e

Download Submit
C:\Users\Admin\AppData\Roaming\AnyDesk\user.conf

Filesize
1KB

MD5
e922085dfae31bafd220b223b5c85abc

SHA1
25ded04a701c7d69708e77fb5fed8520e1b558b0

SHA256
72197ea501786ada5c8890d376c47a16d5e55c85b0d4eed906c59263600541e2

SHA512
b5a612a2069a8c9a71cc282c39d761ac099ae855263c251e266c4701cc338ea311834858174157a06afb9430c2a6aa2ec5a371a31886fe89f66bbd53e83754ac

Download Submit
memory/2120-51-0x0000000000B10000-0x0000000002247000-memory.dmp

Filesize
23.2MB

Download
memory/2120-19-0x0000000000B10000-0x0000000002247000-memory.dmp

Filesize
23.2MB

Download
memory/2120-35-0x00000000001A0000-0x00000000001A1000-memory.dmp

Filesize
4KB

Download
memory/2692-29-0x00000000001B0000-0x00000000001B1000-memory.dmp

Filesize
4KB

Download
memory/2692-12-0x0000000000B10000-0x0000000002247000-memory.dmp

Filesize
23.2MB

Download
memory/2692-52-0x0000000000B10000-0x0000000002247000-memory.dmp

Filesize
23.2MB

Download
memory/3024-23-0x00000000039C0000-0x00000000039C1000-memory.dmp

Filesize
4KB

Download
memory/3024-1-0x0000000000B10000-0x0000000002247000-memory.dmp

Filesize
23.2MB

Download
memory/3024-22-0x0000000003A90000-0x0000000003A91000-memory.dmp

Filesize
4KB

Download
memory/3024-50-0x0000000000B10000-0x0000000002247000-memory.dmp

Filesize
23.2MB

Download
memory/3024-4-0x0000000000160000-0x0000000000161000-memory.dmp

Filesize
4KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads