Analysis
-
max time kernel
149s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
30/12/2023, 06:58
Behavioral task
behavioral1
Sample
119952c0344664332e22082a76d3aafc.exe
Resource
win7-20231215-en
3 signatures
150 seconds
Behavioral task
behavioral2
Sample
119952c0344664332e22082a76d3aafc.exe
Resource
win10v2004-20231215-en
2 signatures
150 seconds
General
-
Target
119952c0344664332e22082a76d3aafc.exe
-
Size
1.4MB
-
MD5
119952c0344664332e22082a76d3aafc
-
SHA1
0a880bbac9e92d1fa204a5b49c5a017d81183013
-
SHA256
daf14c12cf658b9a4e5b68e9fa45a986be247bf3c29ba5f3658701b31ddfe49d
-
SHA512
086c7f6c84f5c7f291d896540b4eff151cb327afd6974fe46291849f499a6c7309a953739ec7263ce8609245c14d6709e8b7a8c750011c702b2db8e3bf7c13fb
-
SSDEEP
24576:Cyvm+6k/O3/wzL3fU2zmXaYWfXNnEsIwD7WQTzJN4yUUk+SaNS:CX2k8flitWfXO8f/vrHk+ST
Score
7/10
Malware Config
Signatures
-
resource yara_rule behavioral2/memory/2804-0-0x0000000000400000-0x0000000000769000-memory.dmp upx behavioral2/memory/2804-2-0x0000000000400000-0x0000000000769000-memory.dmp upx behavioral2/memory/2804-3-0x0000000000400000-0x0000000000769000-memory.dmp upx -
Suspicious behavior: EnumeratesProcesses 2 IoCs
pid Process 2804 119952c0344664332e22082a76d3aafc.exe 2804 119952c0344664332e22082a76d3aafc.exe