Analysis
-
max time kernel
145s -
max time network
166s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
22/12/2023, 04:40
Behavioral task
behavioral1
Sample
6624caabe9ec4c58185492839610d441.exe
Resource
win7-20231215-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
6624caabe9ec4c58185492839610d441.exe
Resource
win10v2004-20231215-en
2 signatures
150 seconds
General
-
Target
6624caabe9ec4c58185492839610d441.exe
-
Size
73KB
-
MD5
6624caabe9ec4c58185492839610d441
-
SHA1
f0a4b9acc75a69e6878767c66327f5b38c80243d
-
SHA256
36d2c355bcf5c8de61973d17e59bf6178c407662d58b9f9792491003ab195529
-
SHA512
5fe243f0ace088351d63ee453192b8fc28af27845795ec44fe360cc8b3f64dba209173afe386217b0de74c77d723d2564388e46b025f9eba4a6179a7cb2250b6
-
SSDEEP
1536:6ASVYvU/81RTl6o2GR7ulOdTW7t92tzaO4vxgidzd6:CKt1R/2GR7+7tIX4JFdx6
Score
7/10
Malware Config
Signatures
-
resource yara_rule behavioral2/memory/3960-0-0x0000000000F00000-0x0000000000F1D000-memory.dmp vmprotect behavioral2/memory/3960-14-0x0000000000F00000-0x0000000000F1D000-memory.dmp vmprotect -
Suspicious behavior: EnumeratesProcesses 22 IoCs
pid Process 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe 3960 6624caabe9ec4c58185492839610d441.exe