Analysis Overview
SHA256
bab06d973a2b8b87c4cd7d43f8b38d336c536703248ef54b6350749731307621
Threat Level: Known bad
The file CollectorNewCrack v1.2.exe was found to be: Known bad.
Malicious Activity Summary
Panda Stealer payload
Pandastealer family
PandaStealer
Unsigned PE
MITRE ATT&CK Matrix
Analysis: static1
Detonation Overview
Reported
2024-07-05 03:53
Signatures
Panda Stealer payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Pandastealer family
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-07-05 03:53
Reported
2024-07-05 03:55
Platform
win10v2004-20240508-en
Max time kernel
30s
Max time network
33s
Command Line
Signatures
Panda Stealer payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
PandaStealer
Processes
C:\Users\Admin\AppData\Local\Temp\CollectorNewCrack v1.2.exe
"C:\Users\Admin\AppData\Local\Temp\CollectorNewCrack v1.2.exe"
Network
Files
memory/3700-0-0x0000000074A6E000-0x0000000074A6F000-memory.dmp
memory/3700-1-0x0000000000160000-0x00000000003C4000-memory.dmp
memory/3700-2-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-6-0x0000000005070000-0x0000000005102000-memory.dmp
memory/3700-5-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-4-0x0000000005540000-0x0000000005AE4000-memory.dmp
memory/3700-3-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-7-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-8-0x0000000005050000-0x000000000505A000-memory.dmp
memory/3700-9-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-10-0x0000000074A6E000-0x0000000074A6F000-memory.dmp
memory/3700-11-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-12-0x0000000074A60000-0x0000000075210000-memory.dmp
memory/3700-13-0x0000000074A60000-0x0000000075210000-memory.dmp