Register Login

sloganpng

file.exe

Status: finished

Submission Time: 2022-11-30 00:22:09 +01:00

Malicious

Evader

Comments

Tags

Details

Analysis ID:
756303
API (Web) ID:
1123579
Analysis Started:

2022-11-30 00:22:09 +01:00
Analysis Finished:

2022-11-30 00:40:30 +01:00
MD5:
2479739c5d062ecb325147623241f007
SHA1:
4394b6d2ca4ed82a5f2d70d10cd05cfa3b35ab2c
SHA256:
728de9789af5f2ebc9ac2fac80fee25b186bc5b3acb960650934377f0c77726d
Technologies:

Engines
IOCs

Full Report	Management Report	IOC Report	Engine	Info	Verdict	Score	Reports

				System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211		60/100
				System: Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 104, IE 11, Adobe Reader DC 19, Java 8 Update 211 Run Condition: Run with higher sleep bypass		60/100
						28/72

Dropped files

Name	File Type	Hashes	Detection
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_rundll32.exe_c7d966c262eae458e8625727f886cf5c34890_82810a17_156d127b\Report.wer	Unicode text, UTF-16, little-endian text, with CRLF line terminators	#
C:\ProgramData\Microsoft\Windows\WER\Temp\WER2AE.tmp.xml	XML 1.0 document, ASCII text, with CRLF line terminators	#
C:\ProgramData\Microsoft\Windows\WER\Temp\WERE8.tmp.WERInternalMetadata.xml	XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators	#
Click to see the 2 hidden entries
C:\ProgramData\Microsoft\Windows\WER\Temp\WERFE66.tmp.dmp	Mini DuMP crash report, 14 streams, Wed Nov 30 08:23:13 2022, 0x1205a4 type	#
C:\Users\user\AppData\Local\Temp\Serpodtudpwhhta.dll	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows	#