Analysis
-
max time kernel
148s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
25/12/2023, 16:07
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2bd01af687fd2ef3cce723fffe1dee58.exe
Resource
win7-20231129-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2bd01af687fd2ef3cce723fffe1dee58.exe
Resource
win10v2004-20231215-en
2 signatures
150 seconds
General
-
Target
2bd01af687fd2ef3cce723fffe1dee58.exe
-
Size
115KB
-
MD5
2bd01af687fd2ef3cce723fffe1dee58
-
SHA1
af60bf73acbaf4b5f0b15848eea175cf6ac1610a
-
SHA256
e2b23cf7aca7d324a9b986756f502b40c00db6a64bc9487cad2af2021f21277a
-
SHA512
d085a0904b35aeb7a0196e1f4b8ae3cf6d95baec042a35bf40d10be7e2633c4951529ee59407fdf5655469cbb4338de017be8365f497738cffdc0dc71db44536
-
SSDEEP
3072:RhiHcNdjLUZC9lrwhKCzYFhq12soGe6HpSPD8mxC7:8ejLaC9lsMvqM3Ge6I7I
Score
1/10
Malware Config
Signatures
-
Suspicious use of UnmapMainImage 1 IoCs
pid Process 880 2bd01af687fd2ef3cce723fffe1dee58.exe -
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28 PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28 PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28 PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28 PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28 PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28 PID 880 wrote to memory of 2160 880 2bd01af687fd2ef3cce723fffe1dee58.exe 28