e0a98110f164a418aa9e2ce22ac1f28a47fcca50a69a9ed5bf9fa707837b7c33

Analysis

max time kernel
168s
max time network
190s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25/12/2023, 01:29

Target

2086bd49ba97ec81bdcfd66d845520cf.exe
Size

94KB
MD5

2086bd49ba97ec81bdcfd66d845520cf
SHA1

cb14e8cadce5e1a33b0a481d7eb935a0c12782a0
SHA256

e0a98110f164a418aa9e2ce22ac1f28a47fcca50a69a9ed5bf9fa707837b7c33
SHA512

832430ddb45539041dac28eaf773aa4bfe28c5aedc53c3bd0d954f1b5e095a59f32dbba314fe6b9cda75fbb5652340258c4b92695763cc2326d2ce27638fa509
SSDEEP

1536:mQ1zcmAt/tHgf0v1ubqrvusbbRnxI59qG4oDHQTwokbP+PJ13P+avAGqLaULHJ+w:mV7mfbsb1xI5xsTwRbGPbGLbDJ+w

Score

1^/10

Suspicious use of UnmapMainImage 1 IoCs

pid	Process
1504	2086bd49ba97ec81bdcfd66d845520cf.exe

Suspicious use of WriteProcessMemory 5 IoCs

description	pid	Process	procid_target
PID 1504 wrote to memory of 908	1504	2086bd49ba97ec81bdcfd66d845520cf.exe	91
PID 1504 wrote to memory of 908	1504	2086bd49ba97ec81bdcfd66d845520cf.exe	91
PID 1504 wrote to memory of 908	1504	2086bd49ba97ec81bdcfd66d845520cf.exe	91
PID 1504 wrote to memory of 908	1504	2086bd49ba97ec81bdcfd66d845520cf.exe	91
PID 1504 wrote to memory of 908	1504	2086bd49ba97ec81bdcfd66d845520cf.exe	91

memory/1504-1-0x0000000000B50000-0x0000000000B51000-memory.dmp

Filesize
4KB

Download
memory/1504-0-0x0000000000400000-0x0000000000419000-memory.dmp

Filesize
100KB

Download
memory/1504-3-0x0000000002180000-0x0000000002193000-memory.dmp

Filesize
76KB

Download
memory/1504-5-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/1504-6-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/1504-7-0x00000000021D0000-0x00000000021DE000-memory.dmp

Filesize
56KB

Download