Analysis
-
max time kernel
123s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20231020-en -
resource tags
arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system -
submitted
23-10-2023 03:35
Static task
static1
Behavioral task
behavioral1
Sample
Design.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
Design.exe
Resource
win10v2004-20231020-en
Behavioral task
behavioral3
Sample
New product.scr
Resource
win7-20231020-en
Behavioral task
behavioral4
Sample
New product.scr
Resource
win10v2004-20231020-en
Behavioral task
behavioral5
Sample
PO_202310.exe
Resource
win7-20231020-en
Behavioral task
behavioral6
Sample
PO_202310.exe
Resource
win10v2004-20231020-en
General
-
Target
New product.scr
-
Size
437KB
-
MD5
3e872d74cb692deb202d25859986357d
-
SHA1
9ba324ec9ff4f454409f653da5d4d7b694255d6b
-
SHA256
701d2231e9b9297450abddc537bfdb90fbb45f679b6da2e1e45b615280bd95c6
-
SHA512
90b800106b029cd671216a0566a573975a6ed3bcfd45c255f47b4e8f9766674f01e3548b5f0abce53258ec89885f8bcd04bc9c85a97596152cadcc2b361e86dd
-
SSDEEP
12288:AD7gUiVaOazGypq9Q/NGbEPAj6JYrOiqot2:daOazTNYE4j6c
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
Processes:
New product.scrdescription pid process target process PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe PID 2136 wrote to memory of 2272 2136 New product.scr RegAsm.exe