File name: | v1.bat |
Full analysis: | https://app.any.run/tasks/37198703-2c24-420a-8b55-44fc0c2903c4 |
Verdict: | Malicious activity |
Analysis date: | December 14, 2018, 18:55:50 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Indicators: | |
MIME: | text/x-msdos-batch |
File info: | DOS batch file, ASCII text, with CRLF line terminators |
MD5: | 6728558BC66603DD250AAC25404E8E49 |
SHA1: | 43A6581E6607019AE29FB55109B0C0F8EFA276DC |
SHA256: | EA2FE806FC17D490458C6C5533840B4597C5CE4A088CBED5AEF800F0F1CB9C69 |
SSDEEP: | 3:mKDDVBFoQt1Byn:h+ebyn |
PID | CMD | Path | Indicators | Parent process |
---|---|---|---|---|
3148 | cmd /c ""C:\Users\admin\AppData\Local\Temp\v1.bat" " | C:\Windows\system32\cmd.exe | explorer.exe | |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Windows Command Processor Exit code: 1 Version: 6.1.7601.17514 (win7sp1_rtm.101119-1850) |