File name:

Marvel’s Spider-Man 2 Setup.exe

Full analysis: https://app.any.run/tasks/02e144da-4205-4777-828a-1f2f08f6e196
Verdict: Malicious activity
Analysis date: October 24, 2023, 12:04:51
OS: Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
Indicators:
MIME: application/x-dosexec
File info: PE32 executable (GUI) Intel 80386, for MS Windows
MD5:

FF464351C55E3559CA1DD86CDB158182

SHA1:

4A73DC9FB3A825DC025348B2F544FE1C41B5AA32

SHA256:

6DDC229E60F88D6D202B5A33379EC9588D0003159654A7997A974C88F57F1038

SSDEEP:

393216:b9JDRynEZAXSm+YfgZpOQsdwW2L+oHvg6waZZ:fDzAXC+gZsI9rnf

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    • Drops the executable file immediately after the start

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)

    • Loads dropped or rewritten executable

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)

  • SUSPICIOUS

    No suspicious indicators.

  • INFO

    • Checks supported languages

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)

    • Reads the computer name

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)

    • Create files in a temporary directory

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)

    • Creates files in the program directory

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)

    • Reads the machine GUID from the registry

      • Marvel’s Spider-Man 2 Setup.exe (PID: 2616)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.dll | Win32 Dynamic Link Library (generic) (43.5)
.exe | Win32 Executable (generic) (29.8)
.exe | Generic Win/DOS Executable (13.2)
.exe | DOS Executable Generic (13.2)

EXIF

EXE

Subsystem: Windows GUI
SubsystemVersion: 4
ImageVersion: -
OSVersion: 4
EntryPoint: 0x1d20
UninitializedDataSize: -
InitializedDataSize: 7376896
CodeSize: 4096
LinkerVersion: 6
PEType: PE32
ImageFileCharacteristics: No relocs, Executable, No line numbers, No symbols, 32-bit
TimeStamp: 2011:01:31 17:44:13+00:00
MachineType: Intel 386 or later, and compatibles
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
40
Monitored processes
2
Malicious processes
1
Suspicious processes
0

Behavior graph

Click at the process to see the details
start marvel’s spider-man 2 setup.exe marvel’s spider-man 2 setup.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
2616"C:\Users\admin\AppData\Local\Temp\Marvel’s Spider-Man 2 Setup.exe" C:\Users\admin\AppData\Local\Temp\Marvel’s Spider-Man 2 Setup.exe
explorer.exe
User:
admin
Integrity Level:
HIGH
Exit code:
0
Modules
Images
c:\users\admin\appdata\local\temp\marvel’s spider-man 2 setup.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\imm32.dll
2700"C:\Users\admin\AppData\Local\Temp\Marvel’s Spider-Man 2 Setup.exe" C:\Users\admin\AppData\Local\Temp\Marvel’s Spider-Man 2 Setup.exeexplorer.exe
User:
admin
Integrity Level:
MEDIUM
Exit code:
3221226540
Modules
Images
c:\users\admin\appdata\local\temp\marvel’s spider-man 2 setup.exe
c:\windows\system32\ntdll.dll
Total events
383
Read events
382
Write events
0
Delete events
1

Modification events

(PID) Process:(2616) Marvel’s Spider-Man 2 Setup.exeKey:HKEY_LOCAL_MACHINE\SOFTWARE\tmp
Operation:delete keyName:(default)
Value:
Executable files
2
Suspicious files
0
Text files
14
Unknown types
0

Dropped files

PID
Process
Filename
Type
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\setup_temp.gea
MD5:
SHA256:
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\82.jpgimage
MD5:FE9CFB79090D299D11BF2F25860AC5FE
SHA256:03AF7AE11DB33A238EC1EA5DDEBE9CDF2F787E5B0CF1A024EDBD120233AA1450
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\genteert.dllexecutable
MD5:6CE814FD1AD7AE07A9E462C26B3A0F69
SHA256:54C0DA1735BB1CB02B60C321DE938488345F8D1D26BF389C8CB2ACAD5D01B831
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\guig.dllexecutable
MD5:D3F8C0334C19198A109E44D074DAC5FD
SHA256:005C251C21D6A5BA1C3281E7B9F3B4F684D007E0C3486B34A545BB370D8420AA
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\115.jpgimage
MD5:929F79FF4C8D01183EBDEB7528E903EB
SHA256:F0A29BEDE553EAF163F14E5D4CA48F4131D8A825E2DFF82F2AED0E76EB034C84
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\4logo-menu.jpgimage
MD5:522FAD2A4658466B48AAC8088E38BD23
SHA256:3E814C90EADB56BCD73482F00A13937036437A3AC4D638D3AEF8665A5A4747C3
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\3default - 1.bmpimage
MD5:14A455E9EEF9FE7FEA4DE14D579A3E84
SHA256:B666E6BD71EFF3547FB2F5580AC61C64527F6F9BE6A2178FA00F80E32431460A
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\93.jpgimage
MD5:AF0D20E7CEE35D946E9B8CD9B68EF0D1
SHA256:E7EB58048CBD457C40049DD938BEB17C968ACB571A887A00C4C0EB8289B4E88D
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\coverPC.jpgimage
MD5:8F6233B8B81DD581EC01DA67009C46EB
SHA256:3FC66CB5C43EC4AE65849DA1E2B0FF249167B01F9ABEADD93DA5180535B5AA46
2616Marvel’s Spider-Man 2 Setup.exeC:\Users\admin\AppData\Local\Temp\gentee9D\104.jpgimage
MD5:A3E5A24F9E2374970D5046FDB3787373
SHA256:A9F7EED6BB1E48F5D10F75214C30EE99179A9508850BFA76CCCF36B44CC43AB0
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
0
TCP/UDP connections
2
DNS requests
0
Threats
0

HTTP requests

No HTTP requests
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4
System
192.168.100.255:138
whitelisted
4
System
192.168.100.255:137
whitelisted

DNS requests

No data

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN LLC. ALL RIGHTS RESERVED
ANY.RUN
Reports
Marvel’s Spider-Man 2 Setup.exe