Overview

overview

1

Static

static

17c2de5977...91.exe

windows7-x64

1

17c2de5977...91.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    155s
  • max time network
    187s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/11/2022, 14:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17c2de59771f8b99b8b1e06421c173768b6a692f07907d24721499bf03367b91.exe

  • Size

    77KB

  • MD5

    0c3837fb5cc54e62dadddcd5d52f66b1

  • SHA1

    92facb5fb16433a18bb184a98610e2c4968bf97a

  • SHA256

    17c2de59771f8b99b8b1e06421c173768b6a692f07907d24721499bf03367b91

  • SHA512

    2df6d416fb3e8cb9413a4f8a4e661c6237a4cb4156d945ec71f024e879ad80f182cc513b716232a0991fb48e716b22f580a4a3e9fbb56b061d87f032f14ec21e

  • SSDEEP

    1536:hlYHQaPnevB6W6t0W9DEiaQnCvecYprUang2vJQtmwfzxOYQ7xJO1T3BXI:hlAn/WU0W9DCve9prZnlhifVOZ76hx4

Score
1/10

Malware Config

Signatures

  • Suspicious use of UnmapMainImage 1 IoCs
  • Suspicious use of WriteProcessMemory 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\17c2de59771f8b99b8b1e06421c173768b6a692f07907d24721499bf03367b91.exe
    "C:\Users\Admin\AppData\Local\Temp\17c2de59771f8b99b8b1e06421c173768b6a692f07907d24721499bf03367b91.exe"
    1⤵
    • Suspicious use of UnmapMainImage
    • Suspicious use of WriteProcessMemory
    PID:3356
    • C:\Windows\SysWOW64\svchost.exe
      svchost.exe
      2⤵
        PID:4328

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3356-132-0x0000000000400000-0x0000000000422000-memory.dmp

      Filesize

      136KB

      Download

    • memory/3356-134-0x0000000000400000-0x0000000000414000-memory.dmp

      Filesize

      80KB

      Download