File name: | DHL Consignment Details_pdf.gz |
Full analysis: | https://app.any.run/tasks/acb4c0fc-b035-4a21-87a5-37dc99725281 |
Verdict: | Malicious activity |
Analysis date: | November 15, 2018, 08:52:25 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Indicators: | |
MIME: | application/gzip |
File info: | gzip compressed data, was "DHL Consignment Details_pdf.exe", last modified: Thu Oct 17 20:00:15 2013, max speed, from FAT filesystem (MS-DOS, OS/2, NT) |
MD5: | FCD83D1788745B01C4AB0D1E27D9E5BD |
SHA1: | 4489064D426344C1FFB1C9349C2F0EF7509963BD |
SHA256: | 8FF00270CA7A4869399523771874EDE6C0B64CDF2B7A41938EE29FF9FA9E85D4 |
SSDEEP: | 3072:vVQ22IPVjd8sIwc0ZAvPNZff0NAdMpjfaTC6/CLKWOTuKqg1OFDjJo4UGA:vVTNjNf5GNZR8jyTCwtQA |
.z/gz/gzip | | | GZipped data (100) |
---|
Compression: | Deflated |
---|---|
Flags: | FileName |
ModifyDate: | 2013:10:17 22:00:15+02:00 |
ExtraFlags: | Fastest Algorithm |
OperatingSystem: | FAT filesystem (MS-DOS, OS/2, NT/Win32) |
ArchivedFileName: | DHL Consignment Details_pdf.exe |
PID | CMD | Path | Indicators | Parent process |
---|---|---|---|---|
3760 | "C:\Program Files\WinRAR\WinRAR.exe" "C:\Users\admin\AppData\Local\Temp\DHL Consignment Details_pdf.gz" | C:\Program Files\WinRAR\WinRAR.exe | explorer.exe | |
User: admin Company: Alexander Roshal Integrity Level: MEDIUM Description: WinRAR archiver Version: 5.60.0 | ||||
3932 | "C:\Users\admin\Desktop\DHL Consignment Details_pdf.exe" | C:\Users\admin\Desktop\DHL Consignment Details_pdf.exe | — | explorer.exe |
User: admin Company: ACEDIAMINE3 Integrity Level: MEDIUM Description: plectognathic Version: 4.09 |
PID | Process | Filename | Type | |
---|---|---|---|---|
3760 | WinRAR.exe | C:\Users\admin\Desktop\DHL Consignment Details_pdf.exe | executable | |
MD5:B7A6F7DE5C28A9E053AAFA44D91950D5 | SHA256:72BEE7CB2A83FD7D96E5A7A563CBAB75B966864F71899083184E6C1C7C91B855 |