54a90dd6994e2f9360001f4d72b0de8a05abdbb3fbe0065c949e4e81d832143a

Analysis

max time kernel
43s
max time network
47s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
19/09/2022, 15:25

Target

54a90dd6994e2f9360001f4d72b0de8a05abdbb3fbe0065c949e4e81d832143a.exe
Size

364KB
MD5

98abfafa200a045b8071c22f89036a7a
SHA1

9742fee5a6d9a5ae2c0a693820a2a56a0942ff3d
SHA256

54a90dd6994e2f9360001f4d72b0de8a05abdbb3fbe0065c949e4e81d832143a
SHA512

907a8e314840085ca64f1f63f2ab04e52c42a24c6851439afcb71da546731e188af71555bdacc3b26f91fb1d6d0c15a51d7ac73343f37a2e337a41a8b61ba311
SSDEEP

6144:jkfaA2zSdMZlC47Jvn3ML+m6Xnb6aoGPBVUEaUyO:OaA2z2ShBn8SHXnWsi+P

Score

1^/10

Suspicious use of UnmapMainImage 1 IoCs

pid	Process
1184	54a90dd6994e2f9360001f4d72b0de8a05abdbb3fbe0065c949e4e81d832143a.exe

C:\Users\Admin\AppData\Local\Temp\54a90dd6994e2f9360001f4d72b0de8a05abdbb3fbe0065c949e4e81d832143a.exe
"C:\Users\Admin\AppData\Local\Temp\54a90dd6994e2f9360001f4d72b0de8a05abdbb3fbe0065c949e4e81d832143a.exe"
1⤵
- Suspicious use of UnmapMainImage
PID:1184

memory/1184-54-0x0000000074BB1000-0x0000000074BB3000-memory.dmp

Filesize
8KB

Download
memory/1184-55-0x0000000000340000-0x0000000000383000-memory.dmp

Filesize
268KB

Download
memory/1184-56-0x0000000000460000-0x00000000004BE000-memory.dmp

Filesize
376KB

Download
memory/1184-57-0x0000000000460000-0x00000000004BE000-memory.dmp

Filesize
376KB

Download
memory/1184-58-0x0000000000400000-0x0000000000443000-memory.dmp

Filesize
268KB

Download