ENTRY POINT COMPLETE
ANDRE: 5cab59e9-1de3-4865-9558-eac274cba3ad

vmtoolsd.exe (PID: 3184)

created c:\users\ieuser\appdata\local\temp\vmware-ieuser\vmwarednd\905ff8d1\sample (7).zip

7/4/2023, 8:12:37 AM

explorer.exe (PID: 6940)

read c:\users\ieuser\appdata\local\temp\vmware-ieuser\vmwarednd\905ff8d1\sample (7).zip

7/4/2023, 8:12:38 AM

explorer.exe (PID: 6940)

created c:\users\ieuser\desktop\malware\sample (7).zip

7/4/2023, 8:12:38 AM

winrar.exe (PID: 11000)

read c:\users\ieuser\desktop\malware\sample (7).zip

7/4/2023, 8:12:43 AM

winrar.exe (PID: 11000)

created c:\users\ieuser\desktop\malware\appinstaller 11.6.exe

7/4/2023, 8:12:48 AM
^
Process Name:
Arguments:
Path:
PID:
Start Time:
Close Time:
Duration:
Created By:
Created By PID:
Parent Chain:
MD5:
Signed By:
User Name:
User SID:
SID Name:
SID Description:
Classification:
Malware Family:
First Seen:
Risk:
Severity:
Confidence:
Detections:
Submitted As:
File Type:
File Size (Bytes):
File Version:
Signed By:
Company:
Close
Arguments: