Cuckoo Sandbox

Name	dd8e63ce09fe33fd_half-life 2 serial.exe Download Submit file
Filepath	C:\Windows\win32dc\Half-Life 2 serial.exe
Size	315.8KB
Processes	1680 (39a47f43658cedb0ecf8703f0cc3c58808cdaa4f1e59dea9718aa512b85c9e1a.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5	`4b765f23a488eafd0bb7dc91b525a9df`
SHA1	`7879aa4efee5783bee660ec2d30a185028325835`
SHA256	`dd8e63ce09fe33fd94cdb0b2e295519856a2eb20c4dba553dbcb8463e1fc7ea1`
CRC32	`F9C3074B`
ssdeep	`None`
Yara	UPX - (no description) suspicious_packer_section - The packer/protector section names/keywords network_irc - Communications over IRC network network_dropper - File downloader/dropper network_tcp_socket - Communications over RAW socket network_dns - Communications use DNS keylogger - Run a keylogger spreading_share - Malware can spread east-west using share drive win_mutex - Create or check mutex win_registry - Affect system registries
VirusTotal	Search for analysis

Name	2d48396aa0392939_ut2004 cdfix.exe Download Submit file
Filepath	C:\Windows\win32dc\UT2004 cdfix.exe
Size	317.8KB
Processes	1680 (39a47f43658cedb0ecf8703f0cc3c58808cdaa4f1e59dea9718aa512b85c9e1a.exe)
Type	PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
MD5	`c48002439f31a163fb2a620050a5da62`
SHA1	`aec097e9882a2105b98ea2d7f22e4ba51ebfab47`
SHA256	`2d48396aa03929392b3984fb23c575d6bec1f81e2c8564ba224edc654ab0d75f`
CRC32	`370CC15A`
ssdeep	`None`
Yara	UPX - (no description) suspicious_packer_section - The packer/protector section names/keywords network_irc - Communications over IRC network network_dropper - File downloader/dropper network_tcp_socket - Communications over RAW socket network_dns - Communications use DNS keylogger - Run a keylogger spreading_share - Malware can spread east-west using share drive win_mutex - Create or check mutex win_registry - Affect system registries
VirusTotal	Search for analysis

Dropped Files