056a541ab4c5a99882b5ae48c8a2627a4ffd7cc5f467e5ef7e965faff3a40bd3

Analysis

max time kernel
3s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
30/12/2023, 06:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

10e46080e57720229f7c977cdad29fc8.exe
Size

1.1MB
MD5

10e46080e57720229f7c977cdad29fc8
SHA1

893b45d66a6c3a6ea0dd9fb4144b8f355b34511b
SHA256

056a541ab4c5a99882b5ae48c8a2627a4ffd7cc5f467e5ef7e965faff3a40bd3
SHA512

77d002b33253dd0e98feaccf73b7ad175f9afdf5107195be00f69959e57fa96f026a93d3c9986b2f02f6255713750817330f078ae8e226d96df424a46f45a9f1
SSDEEP

24576:0WvknOMEduif0lGo6r1AHI3AFdpk1wiRl9WLKduk9yv:0UeOMcuPG/uHI3zXRz0KEkIv

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
3388	Setup.exe

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 2392 wrote to memory of 3388	2392	10e46080e57720229f7c977cdad29fc8.exe	20
PID 2392 wrote to memory of 3388	2392	10e46080e57720229f7c977cdad29fc8.exe	20
PID 2392 wrote to memory of 3388	2392	10e46080e57720229f7c977cdad29fc8.exe	20

C:\Users\Admin\AppData\Local\Temp\10e46080e57720229f7c977cdad29fc8.exe
"C:\Users\Admin\AppData\Local\Temp\10e46080e57720229f7c977cdad29fc8.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:2392
- C:\Users\Admin\AppData\Local\Temp\a27WSI0jG5\oYfQ19QQ\Setup.exe
  C:\Users\Admin\AppData\Local\Temp\a27WSI0jG5\oYfQ19QQ\Setup.exe --relaunch
  2⤵
  - Executes dropped EXE
  PID:3388

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2392-1-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-10-0x0000000000400000-0x0000000000521000-memory.dmp

Filesize
1.1MB

Download
memory/2392-19-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-29-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-40-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-51-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-58-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-65-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-64-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-63-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-62-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-61-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-60-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-59-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-57-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-56-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-55-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-54-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-206-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-53-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-52-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-49-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-50-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-48-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-47-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-46-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-45-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-44-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-43-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-42-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-41-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-39-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-38-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-37-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-36-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-35-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-34-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-33-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-32-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-31-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-30-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-28-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-27-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-26-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-25-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-24-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-23-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-22-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-21-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-20-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-18-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-17-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-16-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-15-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-14-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-13-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-11-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-12-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-8-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-9-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-7-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-5-0x0000000000400000-0x0000000000521000-memory.dmp

Filesize
1.1MB

Download
memory/2392-0-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/2392-849-0x0000000002160000-0x000000000225F000-memory.dmp

Filesize
1020KB

Download
memory/3388-430-0x0000000000400000-0x0000000000521000-memory.dmp

Filesize
1.1MB

Download
memory/3388-622-0x00000000009B0000-0x0000000000AAF000-memory.dmp

Filesize
1020KB

Download
memory/3388-841-0x00000000009B0000-0x0000000000AAF000-memory.dmp

Filesize
1020KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads