Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240419-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05-05-2024 02:05

General

  • Target

    Inquiry List.pdf.exe

  • Size

    1.7MB

  • MD5

    89a2e99f3a510475dfbb36e7492967e9

  • SHA1

    d51a45a4041951b84df7bb9bc08bd9dacb469015

  • SHA256

    17f9b526e5aa96416862611bfa6ab84396209a3df8bb5b723240e8a57dc6d0e9

  • SHA512

    171fe1bdfce0515372fffafde37e3906a5fb7325dfe24861c71d0f1c8cc6556b6e81194bfe175a7595ca73ac169b9038460500706c53982ff87a7b047041c40d

  • SSDEEP

    24576:7ENXVpmPIXFp2Q3tnL0qb1szI4xIIrBB+XVpmPIXFp0iz:2VgPIXFU69uzI4xIY2VgPIXFh

Score
6/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Inquiry List.pdf.exe
    "C:\Users\Admin\AppData\Local\Temp\Inquiry List.pdf.exe"
    1⤵
    • Adds Run key to start application
    • Maps connected drives based on registry
    PID:948

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/948-0-0x00000000747CE000-0x00000000747CF000-memory.dmp

    Filesize

    4KB

  • memory/948-1-0x00000000008B0000-0x0000000000A64000-memory.dmp

    Filesize

    1.7MB

  • memory/948-2-0x00000000747C0000-0x0000000074F70000-memory.dmp

    Filesize

    7.7MB

  • memory/948-3-0x0000000005430000-0x00000000054A0000-memory.dmp

    Filesize

    448KB

  • memory/948-4-0x0000000005AB0000-0x0000000006054000-memory.dmp

    Filesize

    5.6MB

  • memory/948-7-0x00000000747C0000-0x0000000074F70000-memory.dmp

    Filesize

    7.7MB

  • memory/948-9-0x00000000747C0000-0x0000000074F70000-memory.dmp

    Filesize

    7.7MB