File name: | Netflix Gift Card Checker Prv8.rar |
Full analysis: | https://app.any.run/tasks/9066a4c8-ba42-44c9-b8e7-df67d8809f54 |
Verdict: | Malicious activity |
Analysis date: | March 21, 2019, 10:23:08 |
OS: | Windows 7 Professional Service Pack 1 (build: 7601, 32 bit) |
Indicators: | |
MIME: | application/x-rar |
File info: | RAR archive data, v5 |
MD5: | 773B73CBF4B1809D4451AF23FDB949F3 |
SHA1: | ABB55EB539A52B558E6E7A661174788B9DF6013C |
SHA256: | FC76537C23749111D72202F8D3DF43451320D7EF68574CE75C729DC3D9CBE1BD |
SSDEEP: | 24576:s8jVl+U9zO5wgkqV0/68XkCy9kayAl8V4bgVNH+vIPWI6JguKUdm1iQXrwCXS:sI9Wwgk/HXQkayQ1sH+geIJu7Ag0zS |
.rar | | | RAR compressed archive (v5.0) (61.5) |
---|---|---|
.rar | | | RAR compressed archive (gen) (38.4) |
PID | CMD | Path | Indicators | Parent process |
---|---|---|---|---|
3004 | "C:\Program Files\WinRAR\WinRAR.exe" "C:\Users\admin\AppData\Local\Temp\Netflix Gift Card Checker Prv8.rar" | C:\Program Files\WinRAR\WinRAR.exe | explorer.exe | |
User: admin Company: Alexander Roshal Integrity Level: MEDIUM Description: WinRAR archiver Exit code: 0 Version: 5.60.0 | ||||
1100 | "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" | C:\Windows\System32\SearchProtocolHost.exe | — | SearchIndexer.exe |
User: SYSTEM Company: Microsoft Corporation Integrity Level: SYSTEM Description: Microsoft Windows Search Protocol Host Exit code: 0 Version: 7.00.7600.16385 (win7_rtm.090713-1255) | ||||
2696 | "C:\Program Files\WinRAR\WinRAR.exe" x -iext -ow -ver -- "C:\Users\admin\Desktop\giftcard_code_gen.rar" C:\Users\admin\Desktop\giftcard_code_gen\ | C:\Program Files\WinRAR\WinRAR.exe | explorer.exe | |
User: admin Company: Alexander Roshal Integrity Level: MEDIUM Description: WinRAR archiver Exit code: 0 Version: 5.60.0 | ||||
3296 | "C:\Users\admin\Desktop\giftcard_code_gen\giftcard_code_gen.exe" | C:\Users\admin\Desktop\giftcard_code_gen\giftcard_code_gen.exe | explorer.exe | |
User: admin Company: HP Inc. Integrity Level: MEDIUM Description: LXM Generator Exit code: 0 Version: 1.0.0.0 | ||||
1140 | "C:\Windows\system32\NOTEPAD.EXE" C:\Users\admin\Desktop\giftcard_code_gen\fffdd.txt | C:\Windows\system32\NOTEPAD.EXE | — | explorer.exe |
User: admin Company: Microsoft Corporation Integrity Level: MEDIUM Description: Notepad Exit code: 0 Version: 6.1.7600.16385 (win7_rtm.090713-1255) | ||||
3292 | "C:\Users\admin\Desktop\giftcard_code_gen\giftcard_code_gen.exe" | C:\Users\admin\Desktop\giftcard_code_gen\giftcard_code_gen.exe | — | explorer.exe |
User: admin Company: HP Inc. Integrity Level: MEDIUM Description: LXM Generator Exit code: 0 Version: 1.0.0.0 |
PID | Process | Filename | Type | |
---|---|---|---|---|
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\jjjjjj.txt | text | |
MD5:947425DEF2CBFCE90FD46C05FCA2C209 | SHA256:468E43AC0E659C075217C3A3A73CE442FCB64A5675B80F21DF6FCE102589E9B4 | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\Netflix GC Checker Pr8.exe | executable | |
MD5:5E81B09593C84AC6369766255B7B6873 | SHA256:10FE68830E684E48409B15AA31EE7E383CDC734D14AF02764D73FE3BA23BC7DB | |||
2696 | WinRAR.exe | C:\Users\admin\Desktop\giftcard_code_gen\giftcard_code_gen.exe | executable | |
MD5:C27BC2893245FE99DE143A41EA63F387 | SHA256:7D5D4C822A57525F836E14AAC04435642FD3FCE9F6C3EED668E58E62B77B4358 | |||
3296 | giftcard_code_gen.exe | C:\Users\admin\Desktop\giftcard_code_gen\fffdd.txt | text | |
MD5:4AB00B4188A20BF8029B91870E06A382 | SHA256:27814FD151F0BF198FC95ADFC19BD8D27E8BBC11CB9773EF7E849E662DCFE02B | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\giftcard_code_gen.rar | compressed | |
MD5:374AA7C56241C1AAC4FD6EEDEAD29DAA | SHA256:CBEDE5402E5203468FEBB24425C2A8D837B828E87863F0D2CB8DD2319BEBC3B7 | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\Leaf.xNet.dll | executable | |
MD5:42CF916DF4EA1D300201EC9559B7BEF3 | SHA256:939C8980BCB9BD9A2279714F6086714229E7AF194EC4E32677C5A4ED96DB5EDD | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\MetroSuite 2.0.dll | executable | |
MD5:0D30A398CEC0FF006B6EA2B52D11E744 | SHA256:8604BF2A1FE2E94DC1EA1FBD0CF54E77303493B93994DF48479DC683580AA654 | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\YouTube 2.lnk | lnk | |
MD5:DEB42BBEC322CD0B8319F788312E28C4 | SHA256:B3BB48A747CC7078D4C4C5BD872A270B59F328AE90A85EF3D955B8A4892BFF41 | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\YouTube.lnk | lnk | |
MD5:C7056A1F92245EEC9E5CA71F406C4811 | SHA256:BDE117478E44D3AA7D55122CF450F10B5AF74CFB4CE82AE4FC6FB7DD414C2469 | |||
3004 | WinRAR.exe | C:\Users\admin\Desktop\Netflix Gift Card Checker by xRisky\Read before using.txt | text | |
MD5:6DAEBB9555014EA4CA81161FDF5955D9 | SHA256:63C60F2A04A1F40D3784F7818A816D111E3A9522F526BCCA891EDC2BB5E774FC |
Process | Message |
---|---|
giftcard_code_gen.exe | 1 1 1
|
giftcard_code_gen.exe | 1 1 1
|
giftcard_code_gen.exe | 1 1 1
|
giftcard_code_gen.exe | 1 1 1
|