hxxps://precisecomfort-my[.]sharepoint[.]com[:]443/[:]o[:]/g/personal/kbailey_precise-comfort_com/EuOwaZPRdwhDsQxoo30xZLQBJafphgDa9vtbweJPRSiI5g?e=5%3aevYHHw&at=9

Resubmissions

06-06-2023 13:38

06-06-2023 13:26

max time kernel
1s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
06-06-2023 13:38

Target

https://precisecomfort-my.sharepoint.com:443/:o:/g/personal/kbailey_precise-comfort_com/EuOwaZPRdwhDsQxoo30xZLQBJafphgDa9vtbweJPRSiI5g?e=5%3aevYHHw&at=9

Score

1^/10

Suspicious use of WriteProcessMemory 11 IoCs

description	pid	Process	procid_target
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66
PID 3520 wrote to memory of 4132	3520	firefox.exe	66

C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" https://precisecomfort-my.sharepoint.com:443/:o:/g/personal/kbailey_precise-comfort_com/EuOwaZPRdwhDsQxoo30xZLQBJafphgDa9vtbweJPRSiI5g?e=5%3aevYHHw&at=9
1⤵
- Suspicious use of WriteProcessMemory
PID:3520
- C:\Program Files\Mozilla Firefox\firefox.exe
  "C:\Program Files\Mozilla Firefox\firefox.exe" https://precisecomfort-my.sharepoint.com:443/:o:/g/personal/kbailey_precise-comfort_com/EuOwaZPRdwhDsQxoo30xZLQBJafphgDa9vtbweJPRSiI5g?e=5%3aevYHHw&at=9
  2⤵
  PID:4132