48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
30/04/2024, 21:36 UTC

Target

48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3.exe
Size

196KB
MD5

756dc2edc0d90e12f6a36d3d2385b135
SHA1

59dfa259a364169c8622e754db21a70c4ad51ba0
SHA256

48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3
SHA512

c0550ffcdab19267730b45be788ccb58c64ccad193af840723f720329284f99582ef7c92e626b0e5f5abf32950a2e1adf2295e072af156ab9fb3eb33a71693bb
SSDEEP

3072:9IZ1bk1FVvHcTeO4O9fcsW/QA2wem1ZV2REW3m7DtwlKJncpDwKwPRM0YuLpzX6M:SZlkhkzfbQz4/CcpD2zdj

Score

4^/10

Drops file in Windows directory 3 IoCs

description	ioc	Process
File created	C:\Windows\system\bot1.exe	48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3.exe
File opened for modification	C:\Windows\system\bot1.exe	48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3.exe
File opened for modification	C:\Windows\system\RCX203D.tmp	48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3.exe

C:\Users\Admin\AppData\Local\Temp\48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3.exe
"C:\Users\Admin\AppData\Local\Temp\48dde4fea35fed7978d7d4c6b8ce33cfc3fc886b628d0d46fb927c8ffbe430b3.exe"
1⤵
- Drops file in Windows directory
PID:2408

memory/2408-0-0x0000000000400000-0x0000000000418000-memory.dmp

Filesize
96KB

Download
memory/2408-14-0x0000000000400000-0x0000000000418000-memory.dmp

Filesize
96KB

Download