Analysis
-
max time kernel
145s -
max time network
144s -
platform
windows10_x64 -
resource
win10 -
submitted
19-07-2020 16:49
Static task
static1
Behavioral task
behavioral1
Sample
zloader_1.15.5.0.vir.exe
Resource
win7v200430
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
zloader_1.15.5.0.vir.exe
Resource
win10
windows10_x64
0 signatures
0 seconds
General
-
Target
zloader_1.15.5.0.vir.exe
-
Size
156KB
-
MD5
e477358e4fa411d0d426767a02d5a787
-
SHA1
d6c23371f6784f20b8f7052d6b69add87db0ecfb
-
SHA256
1d20f089698311891fac0a5cc2f3ecbfc1ce8e38d5e75a8a55b822324e8b1d35
-
SHA512
f1ffca1e5d4b0762aeea3728150c63d0ee0540ba8593e1dc49884ca0ce61fc2717cddbc718a9f5fa4f48cfa5204c685d1fe04f6c12819ce502ba0717051eac90
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: MapViewOfSection 2 IoCs
Processes:
zloader_1.15.5.0.vir.exepid process 3932 zloader_1.15.5.0.vir.exe 3932 zloader_1.15.5.0.vir.exe -
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
zloader_1.15.5.0.vir.exedescription pid process target process PID 3932 wrote to memory of 3892 3932 zloader_1.15.5.0.vir.exe explorer.exe PID 3932 wrote to memory of 3892 3932 zloader_1.15.5.0.vir.exe explorer.exe PID 3932 wrote to memory of 3892 3932 zloader_1.15.5.0.vir.exe explorer.exe