Overview

overview

4

Static

static

1

DigitalPulse.exe

windows7-x64

4

DigitalPulse.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    292s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    10/10/2023, 06:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    DigitalPulse.exe

  • Size

    5.6MB

  • MD5

    fe469d9ce18f3bd33de41b8fd8701c4d

  • SHA1

    99411eab81e0d7e8607e8fe0f715f635e541e52a

  • SHA256

    b253f2cc3cafc35941d978a4d14b65610e641cb461e862fb0c155f3c30ce127a

  • SHA512

    5b40c5259d01944e718bb14b8e6b994f2ea5bd391058aa8d086033cd609cb54231c7e07b4ab307ecfd5be28936e1c5576d3448504b99d9ac05c5442e5e1e85d9

  • SSDEEP

    98304:lkLdjFeUa29WIx3N3oyqA2QbD15d5a8Nshbsm6gZ70pxm:mdjFe5W3NYvAlJ5vsBJfZwpk

Score
4/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\DigitalPulse.exe
    "C:\Users\Admin\AppData\Local\Temp\DigitalPulse.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2280
    • C:\Users\Admin\AppData\Local\Temp\is-B23P6.tmp\DigitalPulse.tmp
      "C:\Users\Admin\AppData\Local\Temp\is-B23P6.tmp\DigitalPulse.tmp" /SL5="$70120,5025136,832512,C:\Users\Admin\AppData\Local\Temp\DigitalPulse.exe"
      2⤵
      • Executes dropped EXE
      • Suspicious behavior: GetForegroundWindowSpam
      PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\is-B23P6.tmp\DigitalPulse.tmp
    Filesize

    3.1MB

    MD5

    ebec033f87337532b23d9398f649eec9

    SHA1

    c4335168ec2f70621f11f614fe24ccd16d15c9fb

    SHA256

    82fdd2282cf61cfa6155c51a82c4db79487ffeb377d0245d513edeb44d731c16

    SHA512

    3875c2dd9bbeb5be00c2ccf8391bcb92d328a3294ce5c2d31fd09f20d80e12bd610d5473dfc2e13962578e4bb75336615cdf16251489a31ecbe4873d09cf1b11

    Download Submit

  • \Users\Admin\AppData\Local\Temp\is-B23P6.tmp\DigitalPulse.tmp
    Filesize

    3.1MB

    MD5

    ebec033f87337532b23d9398f649eec9

    SHA1

    c4335168ec2f70621f11f614fe24ccd16d15c9fb

    SHA256

    82fdd2282cf61cfa6155c51a82c4db79487ffeb377d0245d513edeb44d731c16

    SHA512

    3875c2dd9bbeb5be00c2ccf8391bcb92d328a3294ce5c2d31fd09f20d80e12bd610d5473dfc2e13962578e4bb75336615cdf16251489a31ecbe4873d09cf1b11

    Download Submit

  • memory/2280-1-0x0000000000400000-0x00000000004D8000-memory.dmp

    Filesize

    864KB

    Download

  • memory/2280-10-0x0000000000400000-0x00000000004D8000-memory.dmp

    Filesize

    864KB

    Download

  • memory/2940-8-0x00000000003E0000-0x00000000003E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2940-12-0x0000000000400000-0x000000000071C000-memory.dmp

    Filesize

    3.1MB

    Download

  • memory/2940-13-0x00000000003E0000-0x00000000003E1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2940-55-0x0000000000400000-0x000000000071C000-memory.dmp

    Filesize

    3.1MB

    Download