Analysis
-
max time kernel
145s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
-
submitted
03/05/2024, 22:08
General
-
Target
5991488ae8d028a11f1322dff5b5cdd749f8c245beff91e6c2d00b93f222c57f.exe
-
Size
794KB
-
MD5
1f31715a0fd73e1e206df347e3a2a2b6
-
SHA1
aaa6789149e5f0792d0262309af5e6992c816612
-
SHA256
5991488ae8d028a11f1322dff5b5cdd749f8c245beff91e6c2d00b93f222c57f
-
SHA512
ba4d625ba59830d3f42baf8d7f39310f9dedfd2cd6da21c8aea638510a8905bbe80a65b839248e39cefeee99bdc46d82b1c0020a30951d11b37e05e60562cb5b
-
SSDEEP
3072:EfKPw/6Nb8lktYpDzo83H6JrgboTlyMvXOqms0itTBf28VK:8KP9NCkt8zErgsTlXvXBmJitTBe8VK
Score
7/10
Malware Config
Signatures
-
Unexpected DNS network traffic destination 1 IoCs
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Suspicious behavior: EnumeratesProcesses 24 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\5991488ae8d028a11f1322dff5b5cdd749f8c245beff91e6c2d00b93f222c57f.exe"C:\Users\Admin\AppData\Local\Temp\5991488ae8d028a11f1322dff5b5cdd749f8c245beff91e6c2d00b93f222c57f.exe"1⤵
- Suspicious behavior: EnumeratesProcesses