44cffeae53da2285a72c041f45b34ddcf446aa1f4bf41de9c8a8b1745e0e60fa

Analysis

max time kernel
144s
max time network
99s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25/12/2023, 01:11

Target

1f86d2272852c8eeb5d3d943d4a7125b.exe
Size

149KB
MD5

1f86d2272852c8eeb5d3d943d4a7125b
SHA1

34bc03a1c35ddf5b6da1d299404f3413713f3a7c
SHA256

44cffeae53da2285a72c041f45b34ddcf446aa1f4bf41de9c8a8b1745e0e60fa
SHA512

3d38dfa6aa9f0de0b5599c66bf99503ba7460ab0ffaa3f67746f8f9851d265fe25920d9f05d8b54d36d845d780ccb31acb22976bf6ee4262ed5e7cb4db3c2b17
SSDEEP

1536:v3DidgZpRo3FN4cA85L1PdRWFvnMrG5vWA13amp7fZDP9eogAojg7LYTAXEr:ri+2FN4nqPdQarcFa2pVeog1g70T8Er

Score

1^/10

Suspicious use of UnmapMainImage 1 IoCs

pid	Process
3156	1f86d2272852c8eeb5d3d943d4a7125b.exe

Suspicious use of WriteProcessMemory 5 IoCs

description	pid	Process	procid_target
PID 3156 wrote to memory of 2036	3156	1f86d2272852c8eeb5d3d943d4a7125b.exe	20
PID 3156 wrote to memory of 2036	3156	1f86d2272852c8eeb5d3d943d4a7125b.exe	20
PID 3156 wrote to memory of 2036	3156	1f86d2272852c8eeb5d3d943d4a7125b.exe	20
PID 3156 wrote to memory of 2036	3156	1f86d2272852c8eeb5d3d943d4a7125b.exe	20
PID 3156 wrote to memory of 2036	3156	1f86d2272852c8eeb5d3d943d4a7125b.exe	20

memory/3156-3-0x0000000000420000-0x000000000042E000-memory.dmp

Filesize
56KB

Download
memory/3156-2-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/3156-1-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/3156-0-0x00000000005B0000-0x00000000005B2000-memory.dmp

Filesize
8KB

Download