af430050f1a36ac9ac0c081d8dac85d706cc8841fb83c626e656111eea30ab94

Analysis

max time kernel
78s
max time network
85s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
05/03/2024, 17:56

Target

Cursor-Custodian-Windows.zip
Size

1.7MB
MD5

547634ac8ad21cdee43752922486cacc
SHA1

f8862b433730556373bc5d73c4e7a859a7dd461e
SHA256

af430050f1a36ac9ac0c081d8dac85d706cc8841fb83c626e656111eea30ab94
SHA512

d28045dacc2dfc03dcdecfc74513818064ab63c13c3ed0c6c9d5b94769e4a35f001809e1a4537c98dddc097a9230bcd14dfbce615ad51b77c5d6af9d2d923313
SSDEEP

49152:KlqdruBo8bCefIBgP1YT/3ZPnldZ5LYxN3e8Og:KlqdwlbCefIBgP1U3ZjKN3fX

Score

1^/10

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\Cursor-Custodian-Windows.zip
1⤵
PID:3772

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:3884

C:\Users\Admin\Documents\Cursor-Custodian-Windows\Cursor Custodian.exe
"C:\Users\Admin\Documents\Cursor-Custodian-Windows\Cursor Custodian.exe"
1⤵
PID:1484

memory/1484-0-0x000000006BCB0000-0x000000006BE22000-memory.dmp

Filesize
1.4MB

Download
memory/1484-1-0x0000000067880000-0x00000000678A8000-memory.dmp

Filesize
160KB

Download
memory/1484-2-0x0000000071000000-0x0000000071011000-memory.dmp

Filesize
68KB

Download
memory/1484-3-0x000000006A880000-0x000000006A8A7000-memory.dmp

Filesize
156KB

Download
memory/1484-4-0x000000006AE80000-0x000000006AF17000-memory.dmp

Filesize
604KB

Download
memory/1484-5-0x0000000062E80000-0x0000000062EA4000-memory.dmp

Filesize
144KB

Download