Analysis Overview
SHA256
3e229bb986eb4df02ad555095ba637ea3c76af712bb0b3b5095e5f3728e01667
Threat Level: Likely benign
The file 2024-06-13_93f7607d4dcc80bf6673196646cdcb36_snatch was found to be: Likely benign.
Malicious Activity Summary
Unsigned PE
Suspicious behavior: EnumeratesProcesses
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-13 08:04
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 08:04
Reported
2024-06-13 08:07
Platform
win7-20240611-en
Max time kernel
147s
Max time network
153s
Command Line
Signatures
Suspicious behavior: EnumeratesProcesses
Processes
C:\Users\Admin\AppData\Local\Temp\2024-06-13_93f7607d4dcc80bf6673196646cdcb36_snatch.exe
"C:\Users\Admin\AppData\Local\Temp\2024-06-13_93f7607d4dcc80bf6673196646cdcb36_snatch.exe"
Network
| Country | Destination | Domain | Proto |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 08:04
Reported
2024-06-13 08:06
Platform
win10v2004-20240508-en
Max time kernel
146s
Max time network
151s
Command Line
Signatures
Suspicious behavior: EnumeratesProcesses
Processes
C:\Users\Admin\AppData\Local\Temp\2024-06-13_93f7607d4dcc80bf6673196646cdcb36_snatch.exe
"C:\Users\Admin\AppData\Local\Temp\2024-06-13_93f7607d4dcc80bf6673196646cdcb36_snatch.exe"
Network
| Country | Destination | Domain | Proto |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp | |
| N/A | 192.168.141.130:4443 | tcp |