Analysis Overview
score
3/10
SHA256
2b34f81fac75313c6db5a80b7b560f303f4714adb6e2392c9c01d7146c022e5d
Threat Level: Likely benign
The file Bypass.exe was found to be: Likely benign.
Malicious Activity Summary
Unsigned PE
MITRE ATT&CK
N/A
Analysis: static1
Detonation Overview
Reported
2025-01-25 05:18
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2025-01-25 05:18
Reported
2025-01-25 05:18
Platform
win7-20240903-en
Max time kernel
21s
Max time network
16s
Command Line
"C:\Users\Admin\AppData\Local\Temp\Bypass.exe"
Signatures
N/A
Processes
C:\Users\Admin\AppData\Local\Temp\Bypass.exe
"C:\Users\Admin\AppData\Local\Temp\Bypass.exe"
Network
N/A
Files
N/A
Analysis: behavioral2
Detonation Overview
Submitted
2025-01-25 05:18
Reported
2025-01-25 05:18
Platform
win10v2004-20241007-en
Max time kernel
5s
Max time network
4s
Command Line
"C:\Users\Admin\AppData\Local\Temp\Bypass.exe"
Signatures
N/A
Processes
C:\Users\Admin\AppData\Local\Temp\Bypass.exe
"C:\Users\Admin\AppData\Local\Temp\Bypass.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.249.119.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.108.50.23.in-addr.arpa | udp |
Files
N/A