Analysis

  • max time kernel
    135s
  • max time network
    155s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240426-en
  • resource tags

    arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    25/05/2024, 22:03

General

  • Target

    Browser/TorBrowser/Tor/tor.exe

  • Size

    8.6MB

  • MD5

    47539d0337e97e22a728afc2638d461f

  • SHA1

    d97b37079543b33b9b605c787945f809aed66fd6

  • SHA256

    262e52c5bbaa9bcd2dfcb4cf7da83a1efa95ebd0299f82031ad31a6ab19405a5

  • SHA512

    3810ebe80173d41785a42459fc5c4a8a31e56294f2c03fe99416925a34d242b88023565057201c9b6dcbdb97c8396d8305a723c0e31bb5b560b031b299672d4a

  • SSDEEP

    98304:jmqFOu7JIl0ipQUUcm2DBkA+Pd140+1h8mKwTvlUUyAa5s:vhJInoiDb51h8KyN

Score
3/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Browser\TorBrowser\Tor\tor.exe
    "C:\Users\Admin\AppData\Local\Temp\Browser\TorBrowser\Tor\tor.exe"
    1⤵
      PID:3000

    Network

          MITRE ATT&CK Enterprise v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Roaming\tor\cached-microdesc-consensus

            Filesize

            2.4MB

            MD5

            e4bd25ebebbf9f5c56428fa80a78b4cb

            SHA1

            9508ba9c2f7a5c7197011d668b17ac3714a67b24

            SHA256

            09d8368424b1adab39c7542a46c7a1edef203c107e6df6f3ade60d7af9521ccd

            SHA512

            d7971af2d8357cd7ee6fa10176d1d959a60175dd54658dd168ca2f094253e2de95a0959341aebbb25754315bbb4e37e0bd195be7104a06c17403ff4a92c5f02b

          • C:\Users\Admin\AppData\Roaming\tor\cached-microdescs.new

            Filesize

            5.2MB

            MD5

            e9d29500f3254cc4ce1b785343e4eab4

            SHA1

            93d4399e572371971ea0830c79fde44174ea3a6b

            SHA256

            d2ca8a4fc48d56a89574219aed8bd6586d8a698e3783d5a1d89741f270ed8d45

            SHA512

            31848fa0af23e94f47e4fe2942b280ee08fb628f141fa7f3136544b52b551016d18b07dbe1fa4248bdf7514794f0020f6160667dac1ac26ee883a90cfe668bdb