Resubmissions
20-06-2024 18:37
240620-w9nslswclq 3Analysis
-
max time kernel
72s -
max time network
82s -
platform
windows10-1703_x64 -
resource
win10-20240404-en -
resource tags
arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system -
submitted
20-06-2024 18:37
Behavioral task
behavioral1
Sample
General_Defense IA-Client_and_Patch_Win64_IS_V3.001.0000000.0.R.20231108 - RITM2550058.zip
Resource
win10-20240404-en
0 signatures
150 seconds
General
-
Target
General_Defense IA-Client_and_Patch_Win64_IS_V3.001.0000000.0.R.20231108 - RITM2550058.zip
-
Size
276.7MB
-
MD5
d09a5009afa001ec6508ee4466725b37
-
SHA1
cd4233a2881e11783cf2770862eb04dab944a7b9
-
SHA256
e35ac43e90fb3786df1dfa5ee70b18044b21b84550733a30d00337acdb4a5079
-
SHA512
d90fbb7bfcb57e52130ce846f7f58ec6dce483ce529edc6f6fd01ffbf2b9809ab71996e8656575d15ff9f68793ed0a4404b35490432c58101d1679965cb2d331
-
SSDEEP
6291456:4MdM0sY9Cea6cMHaiOSmdDwDyIL9ykr7yfiOwPMTZN533CtFrLY:4t6x6iOnTCEGyfiHPyr32FrLY
Score
1/10
Malware Config
Signatures
Processes
-
C:\Windows\Explorer.exeC:\Windows\Explorer.exe /idlist,,"C:\Users\Admin\AppData\Local\Temp\General_Defense IA-Client_and_Patch_Win64_IS_V3.001.0000000.0.R.20231108 - RITM2550058.zip"1⤵PID:856
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵PID:1940