c4d2c77e3219fbcb7d1810f4b9b5abb31d7e1610cb92a66a6b08da2557488cd3

Analysis

max time kernel
157s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30/12/2023, 21:02

Target

1c65f0990c8030495c5369c7a697c762.exe
Size

4.9MB
MD5

1c65f0990c8030495c5369c7a697c762
SHA1

bdf2094aba42e2b5e9a7f695fbb7b0ee019a0e71
SHA256

c4d2c77e3219fbcb7d1810f4b9b5abb31d7e1610cb92a66a6b08da2557488cd3
SHA512

5316fea899d96494489d009b5389ae91d0802022847da7b428fa4b76db9e64aed1bc65eebdc76a43d99c3d3cdaf7119a2f901fd11bf4ec83817b5ef3b10ab21d
SSDEEP

98304:30Atc4dL3Plb8bJb6QICYjMS7ZeV2pGf98yw4GHxtR6TX1i2adaC:3tvflk7I7jVQVE08xVsX1s5

Score

5^/10

Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs

pid	Process
740	1c65f0990c8030495c5369c7a697c762.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

memory/740-0-0x0000000001020000-0x0000000001021000-memory.dmp

Filesize
4KB

Download
memory/740-2-0x0000000000400000-0x0000000000EAB000-memory.dmp

Filesize
10.7MB

Download
memory/740-4-0x00000000010E0000-0x00000000010E1000-memory.dmp

Filesize
4KB

Download
memory/740-5-0x0000000000400000-0x0000000000EAB000-memory.dmp

Filesize
10.7MB

Download
memory/740-6-0x00000000010E0000-0x00000000010E1000-memory.dmp

Filesize
4KB

Download