4c1fdc9e487be3276372c8bf53d8803e4381a178ac41555ad1bc5dc1db311024

Analysis

max time kernel
148s
max time network
72s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30-12-2023 21:49

Target

1d959cb80b6ae5020ba7a1bbc9dc2682.exe
Size

82KB
MD5

1d959cb80b6ae5020ba7a1bbc9dc2682
SHA1

04ad969a9aefff018008a23068f4cce81cf166aa
SHA256

4c1fdc9e487be3276372c8bf53d8803e4381a178ac41555ad1bc5dc1db311024
SHA512

59f3b4320ba528824c3a1f77f5b4e9674f3668ce1b1c6b880a6098f769ce0cfbe5aebbe5aa797b2010ade9e77c56b433b6e6d410e03f3e7b6880f4108c8e05b1
SSDEEP

1536:neGXJxjoTqDOf7+bIUf63+8Ac49kf6AICd621QlblXr1Lb/dASiNFpudX0U:neG5x8caI3aA0ftdhMZNb/2SiNuZ0U

Score

1^/10

Suspicious use of UnmapMainImage 1 IoCs

pid	Process
4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 4732 wrote to memory of 428	4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe	18
PID 4732 wrote to memory of 428	4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe	18
PID 4732 wrote to memory of 428	4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe	18
PID 4732 wrote to memory of 428	4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe	18
PID 4732 wrote to memory of 428	4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe	18
PID 4732 wrote to memory of 428	4732	1d959cb80b6ae5020ba7a1bbc9dc2682.exe	18

memory/428-6-0x0000000000E40000-0x0000000000E49000-memory.dmp

Filesize
36KB

Download
memory/428-5-0x0000000000840000-0x000000000084E000-memory.dmp

Filesize
56KB

Download
memory/428-9-0x0000000000E40000-0x0000000000E49000-memory.dmp

Filesize
36KB

Download
memory/4732-2-0x00000000001E0000-0x00000000001F2000-memory.dmp

Filesize
72KB

Download
memory/4732-4-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/4732-0-0x00000000001D0000-0x00000000001D1000-memory.dmp

Filesize
4KB

Download