fc800c10d4a9fb9c2cfaf0911ad5b14d72549e686ce1de209785da988be57613

Analysis

max time kernel
139s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20240221-en
resource tags

arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system
submitted
22/02/2024, 18:20 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

VS_0.40R2 PCFULL/UnityCrashHandler64.exe
Size

1.0MB
MD5

dde6d2ace5a081ce8f855ff48aa236cc
SHA1

6eea57878f9f252c539ff35603173bb4f30352fc
SHA256

c7e163473d9f3e152bfd93f285c604269bb495b399808d21277f9801719fa13c
SHA512

1ca2625d2f57048dc9b3bca76ca2d1bed04c488cddb2561ab6cb788dbc5cdab2ff75291e71020fe62e3544d242fa2dc6596c48265736b351ba9cb62ea61d6558
SSDEEP

12288:Hr0VqCLbd4NkKx7fKZjwcZPxmCY3riaTreUo0EAn6:Hr0Vq6bdcvxWZjwWJZ4maTrv3n6

Score

1^/10

Malware Config

Signatures

C:\Users\Admin\AppData\Local\Temp\VS_0.40R2 PCFULL\UnityCrashHandler64.exe
"C:\Users\Admin\AppData\Local\Temp\VS_0.40R2 PCFULL\UnityCrashHandler64.exe"
1⤵
PID:1244

Network

DNS

21.53.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.53.126.40.in-addr.arpa

IN PTR

Response
DNS

g.bing.com

Remote address:

8.8.8.8:53

Request

g.bing.com

IN A

Response

g.bing.com

IN CNAME

g-bing-com.a-0001.a-msedge.net

g-bing-com.a-0001.a-msedge.net

IN CNAME

dual-a-0001.a-msedge.net

dual-a-0001.a-msedge.net

IN A

204.79.197.200

dual-a-0001.a-msedge.net

IN A

13.107.21.200
DNS

241.154.82.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

241.154.82.20.in-addr.arpa

IN PTR

Response
DNS

193.78.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

193.78.101.95.in-addr.arpa

IN PTR

Response

193.78.101.95.in-addr.arpa

IN PTR

a95-101-78-193deploystaticakamaitechnologiescom
DNS

205.47.74.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

205.47.74.20.in-addr.arpa

IN PTR

Response
DNS

41.110.16.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

41.110.16.96.in-addr.arpa

IN PTR

Response

41.110.16.96.in-addr.arpa

IN PTR

a96-16-110-41deploystaticakamaitechnologiescom
DNS

157.123.68.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.123.68.40.in-addr.arpa

IN PTR

Response
DNS

56.126.166.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.126.166.20.in-addr.arpa

IN PTR

Response
DNS

134.71.91.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

134.71.91.104.in-addr.arpa

IN PTR

Response

134.71.91.104.in-addr.arpa

IN PTR

a104-91-71-134deploystaticakamaitechnologiescom
DNS

204.178.17.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

204.178.17.96.in-addr.arpa

IN PTR

Response

204.178.17.96.in-addr.arpa

IN PTR

a96-17-178-204deploystaticakamaitechnologiescom
DNS

43.229.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

43.229.111.52.in-addr.arpa

IN PTR

Response
DNS

196.178.17.96.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.178.17.96.in-addr.arpa

IN PTR

Response

196.178.17.96.in-addr.arpa

IN PTR

a96-17-178-196deploystaticakamaitechnologiescom
DNS

171.117.168.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

171.117.168.52.in-addr.arpa

IN PTR

Response

204.79.197.200:443

g.bing.com

tls

2.0kB
9.2kB
22
17

8.8.8.8:53

21.53.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

21.53.126.40.in-addr.arpa
8.8.8.8:53

g.bing.com

dns

56 B
158 B
1
1

DNS Request

g.bing.com

DNS Response

204.79.197.200

13.107.21.200
8.8.8.8:53

241.154.82.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

241.154.82.20.in-addr.arpa
8.8.8.8:53

193.78.101.95.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

193.78.101.95.in-addr.arpa
8.8.8.8:53

205.47.74.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

205.47.74.20.in-addr.arpa
8.8.8.8:53

41.110.16.96.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

41.110.16.96.in-addr.arpa
8.8.8.8:53

157.123.68.40.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

157.123.68.40.in-addr.arpa
8.8.8.8:53

56.126.166.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

56.126.166.20.in-addr.arpa
8.8.8.8:53

134.71.91.104.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

134.71.91.104.in-addr.arpa
8.8.8.8:53

204.178.17.96.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

204.178.17.96.in-addr.arpa
8.8.8.8:53

43.229.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

43.229.111.52.in-addr.arpa
8.8.8.8:53

196.178.17.96.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

196.178.17.96.in-addr.arpa
8.8.8.8:53

171.117.168.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

171.117.168.52.in-addr.arpa

Windows 7 deprecation

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.