f9bae0d51172806c60e6b9fe490d492c8e6e40ca3b4cb938fee39bcd1717b753

Analysis

max time kernel
147s
max time network
113s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30-12-2023 12:28

Target

18862ee6de4ddd94ab936adaaa51df51.exe
Size

31KB
MD5

18862ee6de4ddd94ab936adaaa51df51
SHA1

17dde0b9100c46d61772565d88eeb86e9e438071
SHA256

f9bae0d51172806c60e6b9fe490d492c8e6e40ca3b4cb938fee39bcd1717b753
SHA512

3aabf01a7c4d4a6530be66dc2f4cfe1613273cb9226ec1615be538658fe90f89baf299001dc721379f14b75adc74c4c5090b3eea8010593f6eb9086df124fa44
SSDEEP

768:Zch7TzTBziifTeiZSVWihwEEnh0L7OTLeNfQfZ:eZ/nEEh8OTKNQ

Score

1^/10

Suspicious behavior: EnumeratesProcesses 4 IoCs

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2712 wrote to memory of 3496	2712	18862ee6de4ddd94ab936adaaa51df51.exe	55
PID 2712 wrote to memory of 3496	2712	18862ee6de4ddd94ab936adaaa51df51.exe	55
PID 2712 wrote to memory of 3496	2712	18862ee6de4ddd94ab936adaaa51df51.exe	55
PID 2712 wrote to memory of 3496	2712	18862ee6de4ddd94ab936adaaa51df51.exe	55

memory/2712-0-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2712-2-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/2712-6-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/3496-1-0x000000007FFF0000-0x000000007FFF7000-memory.dmp

Filesize
28KB

Download
memory/3496-3-0x000000007FFD0000-0x000000007FFD1000-memory.dmp

Filesize
4KB

Download