dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185

Analysis

max time kernel
139s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
27/11/2023, 00:18

Target

dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185.exe
Size

274KB
MD5

3c17b818ea6cc9594faffbaa41e58f91
SHA1

5823d52e19079208d9547833335c18e567ed536a
SHA256

dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185
SHA512

f5794cd1a09a1b3118ca7c1523ba10dbe1e3cadee68bababac144473e4c16e978ed12752b2824245af1d6e884666f95770064d9b2b097bc82095be2932b48705
SSDEEP

6144:Mdyl4Muo/rflbWyTpFuo1BpYtx9/3Hk7dXTB:MkbIsPU3E7dXTB

Score

1^/10

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
404	dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185.exe
404	dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185.exe

C:\Users\Admin\AppData\Local\Temp\dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185.exe
"C:\Users\Admin\AppData\Local\Temp\dca4858145688b0b71f131cce97dc5834e228798dd3a43d15574c3a0d21c5185.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:404

memory/404-0-0x0000000000480000-0x00000000004B9000-memory.dmp

Filesize
228KB

Download