Analysis
-
max time kernel
118s -
max time network
125s -
platform
windows7_x64 -
resource
win7-en-20211208 -
submitted
25-01-2022 09:06
Static task
static1
Behavioral task
behavioral1
Sample
20220124svchost/dllhost.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
20220124svchost/dllhost.exe
Resource
win10-en-20211208
Behavioral task
behavioral3
Sample
20220124svchost/host.exe
Resource
win7-en-20211208
Behavioral task
behavioral4
Sample
20220124svchost/host.exe
Resource
win10-en-20211208
Behavioral task
behavioral5
Sample
20220124svchost/svchost.exe
Resource
win7-en-20211208
Behavioral task
behavioral6
Sample
20220124svchost/svchost.exe
Resource
win10-en-20211208
General
-
Target
20220124svchost/svchost.exe
-
Size
4.3MB
-
MD5
0f13dd7af36816e7af4cfc1d478313f6
-
SHA1
c7a80ace11e6ed13c9e7d2362ff0a3a21d11400d
-
SHA256
a7b3052896fde162f15e38f0df0dd1535bc75a9b98d907ee9b4b8ed32c759df0
-
SHA512
219ec2cc2fab0456755750eea73d9a1e426925fd89c6da6c185c6dabbce28668506f73cef40733152faffc14f25686cd5042610ad79dd0a15b40bb19973b4231
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
svchost.exepid process 1684 svchost.exe 1684 svchost.exe