Analysis
-
max time kernel
151s -
max time network
156s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
25/12/2023, 22:37
General
-
Target
40c28fb8e0247b6cafbdad1885235b55.exe
-
Size
470KB
-
MD5
40c28fb8e0247b6cafbdad1885235b55
-
SHA1
219049b06b6891f3a7be3d27c01c929a82763991
-
SHA256
12f9617cdb6eabf7f8d79e407c0261eaf559cec6694fc4476ea987daceff5e1d
-
SHA512
7e4bae2db5062efb80bebd1656070f95c1aac6a9a1717b40adeb8cfdb78b8b4585b8223af3fc3dca4372b95dcc0f2700d25186b5bfd14c16a85ba1ead40b32ea
-
SSDEEP
12288:I9PbRDW1CDgZO0Zlvns1Z5JrsvdMs5p9tz3dNA:IDDWmgU0Zlvns1Z5JoVNBdNA
Score
1/10
Malware Config
Signatures
-
Runs ping.exe 1 TTPs 1 IoCs
-
Suspicious use of WriteProcessMemory 6 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\40c28fb8e0247b6cafbdad1885235b55.exe"C:\Users\Admin\AppData\Local\Temp\40c28fb8e0247b6cafbdad1885235b55.exe"1⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\cmd.execmd.exe /C ping 1.1.1.1 -n 1 -w 3000 > Nul & Del "C:\Users\Admin\AppData\Local\Temp\40c28fb8e0247b6cafbdad1885235b55.exe"2⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\PING.EXEping 1.1.1.1 -n 1 -w 30003⤵
- Runs ping.exe
-
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
476KB
-
Filesize
476KB
-
Filesize
476KB
-
Filesize
476KB