0984ddcdc1f38daff029eceb5c49bce6407921599e19df990ad49361884bc911 | Triage

Analysis

max time kernel
28s
max time network
31s
platform
windows7_x64
resource
win7-20221111-en
resource tags

arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
submitted
31-01-2023 01:56

Sharing

Report Analysis Logs

General

Target

Satire Injector-decrypted.exe
Size

1.2MB
MD5

5639e6ef5eaae3d311021ad9434a4c6f
SHA1

af80f15c7b88b0f0c845037c9a9eb1ace2158791
SHA256

0984ddcdc1f38daff029eceb5c49bce6407921599e19df990ad49361884bc911
SHA512

51f3ba8adafc2228c3077efc76a0f9b5e65966d9eba12a903da106f868ceefa38abcba004fe3bc55315e991e7986a8e31f7b1c59bdfd86e45f86c69ce5a2c4b4
SSDEEP

24576:BTJmi2bXuk2137O/1f/q/Q2FZeyKkEiSi3S9BTadlCKneeylk:BTXS13DweJiC1Gepk

Score

5^/10

Malware Config

Signatures

Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs

pid	Process
852	Satire Injector-decrypted.exe

C:\Users\Admin\AppData\Local\Temp\Satire Injector-decrypted.exe
"C:\Users\Admin\AppData\Local\Temp\Satire Injector-decrypted.exe"
1⤵
- Suspicious use of NtSetInformationThreadHideFromDebugger
PID:852

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/852-54-0x00000000001E0000-0x000000000031E000-memory.dmp

Filesize
1.2MB

Download