Analysis
-
max time kernel
146s -
max time network
149s -
platform
windows10_x64 -
resource
win10v200430 -
submitted
19-07-2020 17:14
Static task
static1
Behavioral task
behavioral1
Sample
zloader_1.15.7.0.vir.exe
Resource
win7
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
zloader_1.15.7.0.vir.exe
Resource
win10v200430
windows10_x64
0 signatures
0 seconds
General
-
Target
zloader_1.15.7.0.vir.exe
-
Size
241KB
-
MD5
b1af80fc1798b4eab6beaf7fcc412e64
-
SHA1
73dcd8f8a9486d3aaa61b2ae9eeda5660d2eb5c6
-
SHA256
7ab6936ad40377ecea070401a55ef15033c9ee2e441a2aaa0dc963a081502761
-
SHA512
8c4a5ab853288306d4d47d15d6dec3727a42589b02bbc3d00d4d5396158e2ee8e2f84b6aef017b3ce7a317200c4c8b50a97cff92fda867ab9eea59f7425d5fb6
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
zloader_1.15.7.0.vir.exedescription pid process target process PID 812 wrote to memory of 1276 812 zloader_1.15.7.0.vir.exe explorer.exe PID 812 wrote to memory of 1276 812 zloader_1.15.7.0.vir.exe explorer.exe PID 812 wrote to memory of 1276 812 zloader_1.15.7.0.vir.exe explorer.exe -
Suspicious behavior: MapViewOfSection 2 IoCs
Processes:
zloader_1.15.7.0.vir.exepid process 812 zloader_1.15.7.0.vir.exe 812 zloader_1.15.7.0.vir.exe