Analysis
-
max time kernel
29s -
max time network
31s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
08-03-2023 13:26
Static task
static1
Behavioral task
behavioral1
Sample
e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe
Resource
win10v2004-20230220-en
General
-
Target
e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe
-
Size
1.4MB
-
MD5
84c0c84b5085b751bf950f3cab6e4d8f
-
SHA1
c734b54b6a8c6c08dad200819effe01ff0c90805
-
SHA256
e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344
-
SHA512
97d07c8980af255478305b5d9fd56df345e7622c79586d91480f6b85f1fad2936cd4bf45eb8b9a080421fda4c64dc791e21adc82e6b0a6d826ec2035a820e997
-
SSDEEP
24576:+iNoZXZR84LGY+gSwCxeIrSwVkvXLFP8hX/LkzaXKrK0bU2TPjAzwzbqZATU5Rwn:4Xf84q1wmeI7VyXZikHHPLjaZAg5+xX9
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 5 IoCs
Processes:
e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exepid process 1324 e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe 1324 e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe 1324 e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe 1324 e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe 1324 e056797b8ff24bc2be4c785c55d0e40a9e4c235ef1424741f9f29b0c28a81344.exe