Analysis
-
max time kernel
92s -
max time network
94s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system -
submitted
11-06-2024 15:30
Behavioral task
behavioral1
Sample
Elden Ring v1.02-v1.10 Plus 34 Trainer.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Elden Ring v1.02-v1.10 Plus 34 Trainer.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
start_protected_game.exe
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
start_protected_game.exe
Resource
win10v2004-20240426-en
General
-
Target
start_protected_game.exe
-
Size
255KB
-
MD5
0991065b2191e7715d96983983e3207d
-
SHA1
827093e196b9c3081002f17cee192e590bb96657
-
SHA256
0078f3f5cea79e68ff7eb526ad8a2151ef1a2e88904ff5038c5cdd82d1ca8b6c
-
SHA512
d542e94cd094431923358b26f222fce902432719885fb9d861c30def6193fd3bd65e7c18b2310ea5b741a7bfa286131d74b0bfc5a293ab443719954f5ee7771c
-
SSDEEP
3072:+J5fEmNK1AvXpr9+pWnReBs10a9qQQr0ngg2/:+J2mNK1AfL+pWL1Z+r8R2/
Malware Config
Signatures
Processes
Network
-
Remote address:8.8.8.8:53Request149.220.183.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request105.83.221.88.in-addr.arpaIN PTRResponse105.83.221.88.in-addr.arpaIN PTRa88-221-83-105deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request73.159.190.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request196.249.167.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request97.17.167.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request157.123.68.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request171.39.242.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request129.83.221.88.in-addr.arpaIN PTRResponse129.83.221.88.in-addr.arpaIN PTRa88-221-83-129deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request160.83.221.88.in-addr.arpaIN PTRResponse160.83.221.88.in-addr.arpaIN PTRa88-221-83-160deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request13.227.111.52.in-addr.arpaIN PTRResponse
-
73 B 147 B 1 1
DNS Request
149.220.183.52.in-addr.arpa
-
72 B 137 B 1 1
DNS Request
105.83.221.88.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
73.159.190.20.in-addr.arpa
-
73 B 147 B 1 1
DNS Request
196.249.167.52.in-addr.arpa
-
71 B 145 B 1 1
DNS Request
97.17.167.52.in-addr.arpa
-
72 B 146 B 1 1
DNS Request
157.123.68.40.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
171.39.242.20.in-addr.arpa
-
72 B 137 B 1 1
DNS Request
129.83.221.88.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
13.227.111.52.in-addr.arpa
-
72 B 137 B 1 1
DNS Request
160.83.221.88.in-addr.arpa