Analysis Overview
score
3/10
SHA256
0032e5c514c420a6c19529a8e55ce17882c5d20384d7112fb8ae6128df8a1c79
Threat Level: Likely benign
The file UA.exe was found to be: Likely benign.
Malicious Activity Summary
Detects Pyinstaller
Unsigned PE
MITRE ATT&CK
N/A
Analysis: static1
Detonation Overview
Reported
2024-05-10 20:12
Signatures
Detects Pyinstaller
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-10 20:12
Reported
2024-05-10 20:15
Platform
win7-20231129-en
Max time kernel
118s
Max time network
120s
Command Line
"C:\Users\Admin\AppData\Local\Temp\UA.exe"
Signatures
N/A
Processes
C:\Users\Admin\AppData\Local\Temp\UA.exe
"C:\Users\Admin\AppData\Local\Temp\UA.exe"
Network
N/A
Files
N/A
Analysis: behavioral2
Detonation Overview
Submitted
2024-05-10 20:12
Reported
2024-05-10 20:13
Platform
win10v2004-20240508-en
Max time kernel
31s
Max time network
35s
Command Line
"C:\Users\Admin\AppData\Local\Temp\UA.exe"
Signatures
N/A
Processes
C:\Users\Admin\AppData\Local\Temp\UA.exe
"C:\Users\Admin\AppData\Local\Temp\UA.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 204.79.197.237:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | 72.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.221.184.93.in-addr.arpa | udp |
| NL | 23.62.61.97:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 97.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.187.3.20.in-addr.arpa | udp |
Files
N/A