ab5f254a91426311df7fe85d3442b62c7b69dd1c6e444ef725ddcba5a06ac961

Analysis

Target

overdue invoice.pdf.exe
Size

1.3MB
MD5

dc5f5ae953f37c7f54a3d787fc2353ca
SHA1

75de209d727492f675faec351f728c2b9d09b565
SHA256

ab5f254a91426311df7fe85d3442b62c7b69dd1c6e444ef725ddcba5a06ac961
SHA512

32c651b7e91fd467616ab5391e4e4e51d343c4d91da4afbf8a8f63d5db2d3f60bca6cf3d77d88daa15da8cbdd7a9dccc7ab3766d859472ed7ca9e4b9ce9decd3

Score

5^/10

Suspicious use of WriteProcessMemory 16 IoCs

description	pid	Process	procid_target
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 240 wrote to memory of 1840	240	overdue invoice.pdf.exe	26
PID 1840 wrote to memory of 1876	1840	RegSvcs.exe	27
PID 1840 wrote to memory of 1876	1840	RegSvcs.exe	27
PID 1840 wrote to memory of 1876	1840	RegSvcs.exe	27
PID 1840 wrote to memory of 1876	1840	RegSvcs.exe	27

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process	procid_target
PID 240 set thread context of 1840	240	overdue invoice.pdf.exe	26

memory/1840-0-0x0000000000400000-0x000000000044C000-memory.dmp

Filesize
304KB

Download
memory/1840-2-0x0000000000400000-0x000000000044C000-memory.dmp

Filesize
304KB

Download
memory/1840-3-0x0000000000400000-0x000000000044C000-memory.dmp

Filesize
304KB

Download
memory/1876-5-0x0000000001E80000-0x0000000001E91000-memory.dmp

Filesize
68KB

Download
memory/1876-6-0x0000000002410000-0x0000000002421000-memory.dmp

Filesize
68KB

Download