Hidden Window
Software Packing
Dynamic Analysis Report
Created 2 days ago
7fq0PwBJkR1rhpBD.exe
Windows Exe (x86-32)
VMRay Threat Identifiers (8 rules, 17 matches)
| Score | Category | Operation | Count | Classification | |
|---|---|---|---|---|---|
5/5 | YARA | Malicious content matched by YARA rules | 6 | Ransomware | |
4/5 | Reputation | Malicious file detected via reputation | 1 | - | |
2/5 | Network Connection | Allows invalid SSL certificates | 1 | - | |
1/5 | Obfuscation | Creates a page with write and execute permissions | 4 | - | |
1/5 | Hide Tracks | Creates process with hidden window | 1 | - | |
1/5 | Obfuscation | Resolves API functions dynamically | 2 | - | |
1/5 | Execution | Drops PE file | 1 | - | |
1/5 | Execution | Executes dropped PE file | 1 | - |
Screenshots
Monitored Processes
MITRE ATT&CK™ Matrix - Windows
ActiveAll
Version: 2019-04-25 20:53:07.719000
Initial Access
Execution
Persistence
Privilege Escalation
Defense Evasion
Credential Access
Discovery
Lateral Movement
Collection
Command and Control
Exfiltration
Impact
Sample Information
| ID | #9254320 |
| MD5 | |
| SHA1 | |
| SHA256 | |
| SSDeep | |
| ImpHash | |
| File Name | 7fq0PwBJkR1rhpBD.exe |
| File Size | 62.69 KB |
| Sample Type | Windows Exe (x86-32) |
Analysis Information
| Creation Time | 2025-04-03 00:04 (UTC+) |
| Analysis Duration | 00:04:00 |
| Termination Reason | Timeout |
| Number of Monitored Processes | 2 |
| Execution Successful | |
| Reputation Enabled | |
| Built-in AV Enabled | |
| Number of AV Matches | 0 |
| YARA Enabled | |
| Number of YARA Matches | 14 |
