File name:

@AdvancedKeySettingsNotification.png

Full analysis: https://app.any.run/tasks/49d2bf50-6533-44f7-8b40-2ce465929aa5
Verdict: No threats detected
Analysis date: April 10, 2020, 12:48:27
OS: Windows 7 Professional Service Pack 1 (build: 7601, 32 bit)
MIME: image/png
File info: PNG image data, 66 x 66, 8-bit gray+alpha, non-interlaced
MD5:

C652A5EA6545C98CE71684018E0640E7

SHA1:

8289F342A4F85ED3BF6D4C94CA0871E5092E3AB3

SHA256:

AA24A85644ECCCAD7098327899A3C827A6BE2AE1474C7958C1500DCD55EE66D8

SSDEEP:

96:aSeo7F8knmWIJ6fFG407oHotHVHHkdFionNv+pzOA2sRup:aSP7F8knlIt1kdFi0Qz52s8p

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.
  • MALICIOUS

    No malicious indicators.
  • SUSPICIOUS

    No suspicious indicators.
  • INFO

    • Manual execution by user

      • explorer.exe (PID: 3320)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.png | Portable Network Graphics (100)

EXIF

Composite

Megapixels: 0.004
ImageSize: 66x66

XMP

HistoryChanged:
  • /
  • /
HistorySoftwareAgent:
  • Adobe Photoshop CC 2018 (Windows)
  • Adobe Photoshop CC 2018 (Windows)
  • Adobe Photoshop CC 2018 (Windows)
HistoryWhen:
  • 2018:09:25 18:32:40-07:00
  • 2018:10:07 12:15:28-07:00
  • 2018:10:07 12:36:29-07:00
HistoryInstanceID:
  • xmp.iid:ca66e76a-a81b-5746-98b3-253b6fd90e11
  • xmp.iid:d091eb0a-3998-bc4c-be00-dc6d33cff62e
  • xmp.iid:586f9fba-7fea-ae43-896a-131c97b7e56f
HistoryAction:
  • created
  • saved
  • saved
OriginalDocumentID: xmp.did:ca66e76a-a81b-5746-98b3-253b6fd90e11
DocumentID: adobe:docid:photoshop:ddda1a2f-657e-7e45-9277-3d2ce4a61c46
InstanceID: xmp.iid:586f9fba-7fea-ae43-896a-131c97b7e56f
ICCProfileName: Dot Gain 20%
ColorMode: Grayscale
Format: image/png
MetadataDate: 2018:10:07 12:36:29-07:00
ModifyDate: 2018:10:07 12:36:29-07:00
CreateDate: 2018:09:25 18:32:40-07:00
CreatorTool: Adobe Photoshop CC 2018 (Windows)
XMPToolkit: Adobe XMP Core 5.6-c142 79.160924, 2017/07/13-01:06:39

PNG

PixelUnits: meters
PixelsPerUnitY: 2835
PixelsPerUnitX: 2835
Interlace: Noninterlaced
Filter: Adaptive
Compression: Deflate/Inflate
ColorType: Grayscale with Alpha
BitDepth: 8
ImageHeight: 66
ImageWidth: 66
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
40
Monitored processes
2
Malicious processes
0
Suspicious processes
0

Behavior graph

Click at the process to see the details
start cmd.exe no specs explorer.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
1440"C:\Windows\System32\cmd.exe" C:\Windows\System32\cmd.exeexplorer.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Windows Command Processor
Exit code:
3221225786
Version:
6.1.7601.17514 (win7sp1_rtm.101119-1850)
Modules
Images
c:\windows\system32\cmd.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\winbrand.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
c:\windows\system32\usp10.dll
3320"C:\Windows\explorer.exe" C:\Windows\explorer.exeexplorer.exe
User:
admin
Company:
Microsoft Corporation
Integrity Level:
MEDIUM
Description:
Windows Explorer
Exit code:
1
Version:
6.1.7600.16385 (win7_rtm.090713-1255)
Modules
Images
c:\windows\explorer.exe
c:\systemroot\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\kernelbase.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\sechost.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\lpk.dll
Total events
32
Read events
32
Write events
0
Delete events
0

Modification events

No data
Executable files
0
Suspicious files
0
Text files
0
Unknown types
0

Dropped files

No data
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
0
TCP/UDP connections
0
DNS requests
0
Threats
0

HTTP requests

No HTTP requests
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

No data

DNS requests

No data

Threats

No threats detected
No debug info