Analysis Overview
SHA256
a4711b64695282d32036ee09ab1a67bc55ba8fa98ff50bf3836539edf5861d52
Threat Level: No (potentially) malicious behavior was detected
The file Update.exe was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-09 04:48
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-09 04:48
Reported
2024-06-09 04:55
Platform
win11-20240419-en
Max time kernel
147s
Max time network
152s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\Update.exe
"C:\Users\Admin\AppData\Local\Temp\Update.exe"
Network
Files
memory/5052-0-0x0000000074D8E000-0x0000000074D8F000-memory.dmp
memory/5052-1-0x00000000005C0000-0x0000000000736000-memory.dmp
memory/5052-2-0x0000000074D80000-0x0000000075531000-memory.dmp
memory/5052-5-0x0000000074D80000-0x0000000075531000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-09 04:48
Reported
2024-06-09 04:53
Platform
android-x86-arm-20240603-en
Max time network
4s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp |