Analysis
-
max time kernel
117s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20230831-en -
resource tags
arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system -
submitted
03/10/2023, 14:22
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
wireguardsetup.exe
Resource
win7-20230831-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
wireguardsetup.exe
Resource
win10v2004-20230915-en
0 signatures
150 seconds
General
-
Target
wireguardsetup.exe
-
Size
20.9MB
-
MD5
ae5fd5f483713e5490441825333644fc
-
SHA1
7817f4091fd0c4fef2f30a6331a926b7176758e4
-
SHA256
88ac32e91a53c852ee024a1aac0f1e1fa29e43020427bde6986ab5c404bafeb1
-
SHA512
7f38a83b3a9c9029926be6f3f06867fb732b94904e300efaedf73c46a1db4d87322734517775d80d50a19a73a71807aabf69d0065ac7a57ce78a2390af4fb2de
-
SSDEEP
49152:VgPnkYckuOEUrh1w3BDXcydh7Tt0DwdShTonT8E0ei+TsJeKI4e338fKg0PExp5B:
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 2120 wrote to memory of 2180 2120 wireguardsetup.exe 29 PID 2120 wrote to memory of 2180 2120 wireguardsetup.exe 29 PID 2120 wrote to memory of 2180 2120 wireguardsetup.exe 29