Cuckoo Sandbox

Name	7d296096736cef7e_flatout + serial.exe Download Submit file
Filepath	C:\Windows\win32dc\FlatOut + serial.exe
Size	205.1KB
Processes	1684 (8e2714b5b450e2ec_ut2004(cdfix).exe)
Type	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
MD5	`801a07f52f8fdd9b2aab265e344aa2ac`
SHA1	`0051975701fdf07000be950fb65aa5e777ce74fb`
SHA256	`7d296096736cef7e7dbfb1d21514ebdb165fd6f768297802bd1be9d03ca69687`
CRC32	`BEF48707`
ssdeep	`None`
Yara	suspicious_packer_section - The packer/protector section names/keywords network_irc - Communications over IRC network network_dropper - File downloader/dropper network_tcp_socket - Communications over RAW socket network_dns - Communications use DNS keylogger - Run a keylogger spreading_share - Malware can spread east-west using share drive win_mutex - Create or check mutex win_registry - Affect system registries win_private_profile - Affect private profile
VirusTotal	Search for analysis

Name	2b7f82417ed9e37e_half-life 2 + hack.exe Download Submit file
Filepath	C:\Windows\win32dc\Half-Life 2 + hack.exe
Size	207.1KB
Processes	1684 (8e2714b5b450e2ec_ut2004(cdfix).exe)
Type	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
MD5	`af1dd0f68ad57eda0511399b317409c9`
SHA1	`5ff60d08da1e44327f724d53936d63ed75ca58d0`
SHA256	`2b7f82417ed9e37e8eddf6d2ccbcc10a962867c39787e3bc621fd2c7a29baa50`
CRC32	`036D6A32`
ssdeep	`None`
Yara	suspicious_packer_section - The packer/protector section names/keywords network_irc - Communications over IRC network network_dropper - File downloader/dropper network_tcp_socket - Communications over RAW socket network_dns - Communications use DNS keylogger - Run a keylogger spreading_share - Malware can spread east-west using share drive win_mutex - Create or check mutex win_registry - Affect system registries win_private_profile - Affect private profile
VirusTotal	Search for analysis

Dropped Files