fae90e57bc713e7767ee8c8ee9a7e7decfb9f92da733bcff2f9bf58660722114

Analysis

max time kernel
1562s
max time network
1563s
platform
windows7_x64
resource
win7-20231201-en
resource tags

arch:x64arch:x86image:win7-20231201-enlocale:en-usos:windows7-x64system
submitted
02-12-2023 13:53

Target

uex/setup.exe
Size

6.0MB
MD5

8489e54b239a4f9793269770a7612769
SHA1

fa78770f7a70ceabf64ca24abfe2f2ae1d79b042
SHA256

871f8e67dafbdacf262ee0d3fa723303de4f56af6de5410ef5ee76ecb0d38bd4
SHA512

b9c5727e8036d2109eff64c3f0536dd9e9d5b80b4d968334093b225bc33bc4d46fbf0f0f737b3ea040871a711d37d0d4355aec62fcee132535c4242428719f9d
SSDEEP

196608:zo3I4KJ9onJ5hrZEjyiU8AdZYJERurTKTQRB:BFJ9c5hlEbAdZYygrWsR

Score

7^/10

Loads dropped DLL 1 IoCs

pid	Process
2680	setup.exe

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 3004 wrote to memory of 2680	3004	setup.exe	29
PID 3004 wrote to memory of 2680	3004	setup.exe	29
PID 3004 wrote to memory of 2680	3004	setup.exe	29

C:\Users\Admin\AppData\Local\Temp\uex\setup.exe
"C:\Users\Admin\AppData\Local\Temp\uex\setup.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:3004
- C:\Users\Admin\AppData\Local\Temp\uex\setup.exe
  "C:\Users\Admin\AppData\Local\Temp\uex\setup.exe"
  2⤵
  - Loads dropped DLL
  PID:2680

C:\Users\Admin\AppData\Local\Temp\_MEI30042\python39.dll

Filesize
4.3MB

MD5
11c051f93c922d6b6b4829772f27a5be

SHA1
42fbdf3403a4bc3d46d348ca37a9f835e073d440

SHA256
0eabf135bb9492e561bbbc5602a933623c9e461aceaf6eb1ceced635e363cd5c

SHA512
1cdec23486cffcb91098a8b2c3f1262d6703946acf52aa2fe701964fb228d1411d9b6683bd54527860e10affc0e3d3de92a6ecf2c6c8465e9c8b9a7304e2a4a6

Download Submit
\Users\Admin\AppData\Local\Temp\_MEI30042\python39.dll

Filesize
4.3MB

MD5
11c051f93c922d6b6b4829772f27a5be

SHA1
42fbdf3403a4bc3d46d348ca37a9f835e073d440

SHA256
0eabf135bb9492e561bbbc5602a933623c9e461aceaf6eb1ceced635e363cd5c

SHA512
1cdec23486cffcb91098a8b2c3f1262d6703946acf52aa2fe701964fb228d1411d9b6683bd54527860e10affc0e3d3de92a6ecf2c6c8465e9c8b9a7304e2a4a6

Download Submit