ddc6b415d04d15b96d75c06205c1d347548e0958ef4a7803366ef84af7a2fa09

Submit
Reports

Overview

overview

Static

static

Minitool p...ry.rar

windows7-x64

Minitool p...ry.rar

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Minitool p...xe.mfh

windows7-x64

Minitool p...xe.mfh

windows10-2004-x64

Minitool p...ry.exe

windows7-x64

Minitool p...ry.exe

windows10-2004-x64

Analysis

max time kernel
134s
max time network
128s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
25-05-2024 20:28

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Minitool powerdata recovery.rar

Resource

win7-20240221-en

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

Minitool powerdata recovery.rar

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

Minitool powerdata recovery/X64/Business Deluxe/PowerDataRecovery.exe

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Minitool powerdata recovery/X64/Business Deluxe/PowerDataRecovery.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Minitool powerdata recovery/X64/Business Deluxe/PowerDataRecovery.exe.mfh

Resource

win7-20240221-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

Minitool powerdata recovery/X64/Business Deluxe/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Minitool powerdata recovery/X64/Business Enterprise/PowerDataRecovery.exe

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Minitool powerdata recovery/X64/Business Enterprise/PowerDataRecovery.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Minitool powerdata recovery/X64/Business Enterprise/PowerDataRecovery.exe.mfh

Resource

win7-20240215-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral10

Sample

Minitool powerdata recovery/X64/Business Enterprise/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

Minitool powerdata recovery/X64/Business Standard/PowerDataRecovery.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Minitool powerdata recovery/X64/Business Standard/PowerDataRecovery.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Minitool powerdata recovery/X64/Business Standard/PowerDataRecovery.exe.mfh

Resource

win7-20240508-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

Minitool powerdata recovery/X64/Business Standard/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

Minitool powerdata recovery/X64/Business Technician/PowerDataRecovery.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Minitool powerdata recovery/X64/Business Technician/PowerDataRecovery.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Minitool powerdata recovery/X64/Business Technician/PowerDataRecovery.exe.mfh

Resource

win7-20240419-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral18

Sample

Minitool powerdata recovery/X64/Business Technician/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Minitool powerdata recovery/X86/Business Deluxe/PowerDataRecovery.exe

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Minitool powerdata recovery/X86/Business Deluxe/PowerDataRecovery.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Minitool powerdata recovery/X86/Business Deluxe/PowerDataRecovery.exe.mfh

Resource

win7-20240508-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral22

Sample

Minitool powerdata recovery/X86/Business Deluxe/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral23

Sample

Minitool powerdata recovery/X86/Business Enterprise/PowerDataRecovery.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Minitool powerdata recovery/X86/Business Enterprise/PowerDataRecovery.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Minitool powerdata recovery/X86/Business Enterprise/PowerDataRecovery.exe.mfh

Resource

win7-20240221-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral26

Sample

Minitool powerdata recovery/X86/Business Enterprise/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

Minitool powerdata recovery/X86/Business Standard/PowerDataRecovery.exe

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Minitool powerdata recovery/X86/Business Standard/PowerDataRecovery.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Minitool powerdata recovery/X86/Business Standard/PowerDataRecovery.exe.mfh

Resource

win7-20231129-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral30

Sample

Minitool powerdata recovery/X86/Business Standard/PowerDataRecovery.exe.mfh

Resource

win10v2004-20240426-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

Minitool powerdata recovery/X86/Business Technician/PowerDataRecovery.exe

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Minitool powerdata recovery/X86/Business Technician/PowerDataRecovery.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Minitool powerdata recovery/X86/Business Standard/PowerDataRecovery.exe
Size

2.3MB
MD5

5342856374e4227fa3f7bf19c885c110
SHA1

2bf49299ec3c0cd5f8b648ca32e1494c7995f1cc
SHA256

efb67263c025dfec4c8d3215c49616073715b9540e1ebf28dec1c052209f96bf
SHA512

c185bcce89dd01aec668a8a0c52f8acc41152497020276ae3cee7e679ce1b39435bacff196d900524a2c430bede69a4cfad48301ac495e63c61fd57624bb4f90
SSDEEP

49152:4sLjfbr2NEdxBIqtm53BqqKYsHT5wuzsBrCXlyZojZab9VELg:4sjfbS2P9s5MqKY89CrCVy6Y

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\Minitool powerdata recovery\X86\Business Standard\PowerDataRecovery.exe
"C:\Users\Admin\AppData\Local\Temp\Minitool powerdata recovery\X86\Business Standard\PowerDataRecovery.exe"
1⤵
PID:1248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1248-0-0x0000000000400000-0x0000000000952000-memory.dmp

Filesize
5.3MB

Download
memory/1248-1-0x0000000000400000-0x0000000000952000-memory.dmp

Filesize
5.3MB

Download