309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd | Triage

Analysis

max time kernel
134s
max time network
149s
platform
windows7_x64
resource
win7-en-20211208
submitted
22-02-2022 06:35

Sharing

Report Analysis Logs

General

Target

309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe
Size

342KB
MD5

c2ac38880868754f2e7f1a135798a7d4
SHA1

fd4d7318519e105e741e4ab9fdc99ba10ea304a6
SHA256

309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd
SHA512

0826b82b5f05ce77bf6854b2fd687a499ce8265d7aac21b0f72487c6f141d0cf9253d9b64d3f1d44af69bdcd544a89485dc8a3ae4fb9a8af2716bcbf4ebfef93

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 5 IoCs

Processes:

309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe

pid	process
1880	309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe
1880	309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe
1880	309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe
1880	309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe
1880	309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe

C:\Users\Admin\AppData\Local\Temp\309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe
"C:\Users\Admin\AppData\Local\Temp\309c855e15d34ab746be0b978cba6c013a45ae31394f25b1d318a30cd9edf9cd.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:1880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1880-54-0x0000000075AB1000-0x0000000075AB3000-memory.dmp

Filesize
8KB

Download