Analysis
-
max time kernel
150s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
26-12-2024 08:41
Behavioral task
behavioral1
Sample
1744-7-0x0000000000400000-0x0000000000C61000-memory.exe
Resource
win7-20240903-en
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
1744-7-0x0000000000400000-0x0000000000C61000-memory.exe
Resource
win10v2004-20241007-en
0 signatures
150 seconds
General
-
Target
1744-7-0x0000000000400000-0x0000000000C61000-memory.exe
-
Size
8.4MB
-
MD5
0c5a99982b59f04f85d1fe14f89c1677
-
SHA1
21b063dd94768fa2fd5245c294fb7486f6e7d58b
-
SHA256
d23174bea9359e0b49e6f9c06df3791a370ffe236be34375e202470ca2844f38
-
SHA512
179687ac7d0c37d2e2af65fdbaac9f891cbcc687149170c6efde0cc7e554ffbe16bfe0563332ae1cc837f4d532342bc9b1d50456f7449b4ba2bf79325700f0e1
-
SSDEEP
98304:mcqKcOA288L14Yc6dpkF3zAeuvYhDy2H/iLCDTni2zu:os126O3zAeuvwew/h3nhu
Score
1/10
Malware Config
Signatures
Processes
Network
-
Remote address:8.8.8.8:53Request232.168.11.51.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request133.32.126.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request95.221.229.192.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request50.23.12.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request15.164.165.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request172.210.232.199.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request23.236.111.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request89.65.42.20.in-addr.arpaIN PTRResponse
No results found
-
72 B 158 B 1 1
DNS Request
232.168.11.51.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
133.32.126.40.in-addr.arpa
-
73 B 144 B 1 1
DNS Request
95.221.229.192.in-addr.arpa
-
70 B 156 B 1 1
DNS Request
50.23.12.20.in-addr.arpa
-
72 B 146 B 1 1
DNS Request
15.164.165.52.in-addr.arpa
-
74 B 128 B 1 1
DNS Request
172.210.232.199.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
23.236.111.52.in-addr.arpa
-
70 B 156 B 1 1
DNS Request
89.65.42.20.in-addr.arpa