Analysis
-
max time kernel
94s -
max time network
95s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system -
submitted
09-04-2024 15:43
Behavioral task
behavioral1
Sample
8816bf5056a42f20cdd42209bf7553be1bd6d41eef6562976afcddde37b0abff.exe
Resource
win7-20240221-en
windows7-x64
5 signatures
150 seconds
Behavioral task
behavioral2
Sample
8816bf5056a42f20cdd42209bf7553be1bd6d41eef6562976afcddde37b0abff.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
8816bf5056a42f20cdd42209bf7553be1bd6d41eef6562976afcddde37b0abff.exe
-
Size
2.4MB
-
MD5
5ce107febbfb6cbd01b3ee02fb6d5cb3
-
SHA1
2cd5f1283caaf1b60796bab6ba1bbef398d26924
-
SHA256
8816bf5056a42f20cdd42209bf7553be1bd6d41eef6562976afcddde37b0abff
-
SHA512
bf9b86c21a18bdacccca3f9333b520368875247946cb96aca8eb90107ace0fb53afa6f8f211ccb62aea55b26ce6c833b9eaa3fab26a91c53d9ebe07a4c470eb2
-
SSDEEP
49152:Va/RPnb1b+uL5KTu8l6VP/DOdmGtPY4ldvxondziuxL9bnKESY:Va/RTd56M9/DmmGmMve5FxL9
Score
1/10
Malware Config
Signatures
Processes
Network
-
Remote address:8.8.8.8:53Request217.106.137.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request140.32.126.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request240.197.17.2.in-addr.arpaIN PTRResponse240.197.17.2.in-addr.arpaIN PTRa2-17-197-240deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request196.249.167.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request26.165.165.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request56.126.166.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request28.143.109.104.in-addr.arpaIN PTRResponse28.143.109.104.in-addr.arpaIN PTRa104-109-143-28deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request11.227.111.52.in-addr.arpaIN PTRResponse
No results found
-
73 B 147 B 1 1
DNS Request
217.106.137.52.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
140.32.126.40.in-addr.arpa
-
71 B 135 B 1 1
DNS Request
240.197.17.2.in-addr.arpa
-
73 B 147 B 1 1
DNS Request
196.249.167.52.in-addr.arpa
-
72 B 146 B 1 1
DNS Request
26.165.165.52.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
56.126.166.20.in-addr.arpa
-
73 B 139 B 1 1
DNS Request
28.143.109.104.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
11.227.111.52.in-addr.arpa