e6580bfd402094990382f5d0e39d1a58e82a40fc6ea47bbf5efb0d6a30220b15

Analysis

max time kernel
160s
max time network
170s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30/12/2023, 04:05

Target

0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe
Size

109KB
MD5

0dd8ce7e0e3f1908d4b8b9b14c8a22fe
SHA1

03b32db19668e9750564c8e4b9bd7e27b3aa3ea8
SHA256

e6580bfd402094990382f5d0e39d1a58e82a40fc6ea47bbf5efb0d6a30220b15
SHA512

192750415009b1a62a15d3357456eddfbdc3b53bfadb8af04315ce0a674efaa5a3e184de1248f1e0f5197bc40491a68c0cd974c8a32a29f29aadf66c9f520154
SSDEEP

1536:jZxoklV834iQ6Ugi+GtUuDQEM89M/BSU7gyU4uTSqBGeGF6sogyX05Vj5Lr0qfVl:jjokDifioByQBYD4uTSqOM+eqfVmE

Score

1^/10

Suspicious use of UnmapMainImage 1 IoCs

pid	Process
2616	0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe

Suspicious use of WriteProcessMemory 5 IoCs

description	pid	Process	procid_target
PID 2616 wrote to memory of 3564	2616	0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe	88
PID 2616 wrote to memory of 3564	2616	0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe	88
PID 2616 wrote to memory of 3564	2616	0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe	88
PID 2616 wrote to memory of 3564	2616	0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe	88
PID 2616 wrote to memory of 3564	2616	0dd8ce7e0e3f1908d4b8b9b14c8a22fe.exe	88

memory/2616-1-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/2616-0-0x00000000005F0000-0x00000000005F1000-memory.dmp

Filesize
4KB

Download
memory/2616-3-0x0000000000630000-0x000000000063E000-memory.dmp

Filesize
56KB

Download
memory/2616-2-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download