5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0

Analysis

max time kernel
150s
max time network
153s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
08/04/2024, 21:37

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
Size

268KB
MD5

aab7eb1555d66a09af7a6c6ca1594c3e
SHA1

f5d0b388d7c71245b3cb85cb149ded14c7d9ea47
SHA256

5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0
SHA512

023f80082a2a5ee4c544f292009ffc66e98a27a9420c9dd4b2b044c2bebfd1751f9f9bf652ddb1339a91733938287f3843b212172ae721ce4bccc53bb66b4df1
SSDEEP

6144:Nuq1yykbmMPilu34To5DTd4XQzWWgOj72JtN/Tni/N:B1y55q43485n1attTn8N

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 18 IoCs

description	ioc	Process
File created	C:\Windows\win32dc\Quake3 + patch.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\BattleField 1942 + fix.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\Sims 2 nocd.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\UT2004 + cheat.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\UT2004 + cheat.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\Sims 2_codes.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\DAoC cdfix.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\DAoC_hack.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\DAoC_hack.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\BattleField 1942 + fix.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\Sims 2_codes.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\BattleField 1942_crack.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\Half-Life 2 + hack.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\Quake3 + patch.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\DAoC cdfix.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\UT2004_patch.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File created	C:\Windows\win32dc\Half-Life 2 + hack.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
File opened for modification	C:\Windows\win32dc\Sims 2 nocd.exe	5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe

C:\Users\Admin\AppData\Local\Temp\5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe
"C:\Users\Admin\AppData\Local\Temp\5fe746c8cffe257120b6d6a8b8107590370645678c59832cc31a00f673c2abc0.exe"
1⤵
- Drops file in Windows directory
PID:340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Windows\win32dc\Quake3 + patch.exe

Filesize
272KB

MD5
9bc055c686ed9ba511218e006f684005

SHA1
44b1714a88f104f3cce903ef6ff9c5d330f7dfb5

SHA256
f5c6585698729526978695f895277d310a0e68caa92874dd1b979541c3272094

SHA512
8aad0043f4a6e241fc80ec7bb4e6896c627b95e4fb8e28e870fd897bb3224a519fc6578a155774fb037f0506371865aaca514c48c1898a9bdd85e9486a81e990

Download Submit
memory/340-18-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-19-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-20-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-21-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-22-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-23-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-24-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-25-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-26-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-27-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-28-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-29-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-31-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download
memory/340-32-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads