Analysis Overview
SHA256
06b033d1499fef5a177b5e76bda5eb533a6788b2995b7cdc0765b98cea4a37b6
Threat Level: Likely benign
The file 06b033d1499fef5a177b5e76bda5eb533a6788b2995b7cdc0765b98cea4a37b6 was found to be: Likely benign.
Malicious Activity Summary
Unsigned PE
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-13 06:28
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 06:28
Reported
2024-06-13 06:31
Platform
win10v2004-20240508-en
Max time kernel
39s
Max time network
53s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\06b033d1499fef5a177b5e76bda5eb533a6788b2995b7cdc0765b98cea4a37b6.exe
"C:\Users\Admin\AppData\Local\Temp\06b033d1499fef5a177b5e76bda5eb533a6788b2995b7cdc0765b98cea4a37b6.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | barebrilliancedkoso.shop | udp |
| US | 8.8.8.8:53 | liabiliytshareodlkv.shop | udp |
| US | 8.8.8.8:53 | notoriousdcellkw.shop | udp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 06:28
Reported
2024-06-13 06:31
Platform
win11-20240611-en
Max time kernel
14s
Max time network
118s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\06b033d1499fef5a177b5e76bda5eb533a6788b2995b7cdc0765b98cea4a37b6.exe
"C:\Users\Admin\AppData\Local\Temp\06b033d1499fef5a177b5e76bda5eb533a6788b2995b7cdc0765b98cea4a37b6.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | barebrilliancedkoso.shop | udp |
| US | 104.21.92.202:443 | barebrilliancedkoso.shop | tcp |
| US | 172.67.171.178:443 | liabiliytshareodlkv.shop | tcp |
| US | 172.67.160.81:443 | notoriousdcellkw.shop | tcp |
| US | 8.8.8.8:53 | conferencefreckewl.shop | udp |
| US | 172.67.179.192:443 | conferencefreckewl.shop | tcp |
| US | 172.67.197.45:443 | flourhishdiscovrw.shop | tcp |
| US | 104.21.0.207:443 | landdumpycolorwskfw.shop | tcp |
| US | 172.67.161.244:443 | ohfantasyproclaiwlo.shop | tcp |
| US | 172.67.165.247:443 | parallelmercywksoffw.shop | tcp |
| US | 8.8.8.8:53 | 207.0.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.161.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 247.165.67.172.in-addr.arpa | udp |