9d5b467c6b68ab75c8153df07b72abd63fda9bd3dfcc045cb6fb65c17b1db482 | Triage

Analysis

max time kernel
118s
max time network
127s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
01/01/2024, 09:43

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

0257ddd147e983c710726ab6fa0f8e32.exe
Size

239KB
MD5

0257ddd147e983c710726ab6fa0f8e32
SHA1

85fdda8fe46fb37b098953fda8b4ed22337954c4
SHA256

9d5b467c6b68ab75c8153df07b72abd63fda9bd3dfcc045cb6fb65c17b1db482
SHA512

d11646f9c95327dd5ab498339097bd67681e4ad0ae97639190b95b29ab07f188c9f9adda0a8bedccef87d0bbd9c86b45b1ffe76a4210714df072d1802c59bb6d
SSDEEP

6144:60+pf8o5HaqCTPL5oT5jzOZiDmUZE5jZR5s:63pldatOn9mUZ2vu

Score

1^/10

Malware Config

Signatures

Suspicious behavior: MapViewOfSection 1 IoCs

pid	Process
2068	0257ddd147e983c710726ab6fa0f8e32.exe

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2068 wrote to memory of 2692	2068	0257ddd147e983c710726ab6fa0f8e32.exe	28
PID 2068 wrote to memory of 2692	2068	0257ddd147e983c710726ab6fa0f8e32.exe	28
PID 2068 wrote to memory of 2692	2068	0257ddd147e983c710726ab6fa0f8e32.exe	28
PID 2068 wrote to memory of 2692	2068	0257ddd147e983c710726ab6fa0f8e32.exe	28

C:\Users\Admin\AppData\Local\Temp\0257ddd147e983c710726ab6fa0f8e32.exe
"C:\Users\Admin\AppData\Local\Temp\0257ddd147e983c710726ab6fa0f8e32.exe"
1⤵
- Suspicious behavior: MapViewOfSection
- Suspicious use of WriteProcessMemory
PID:2068
- C:\Users\Admin\AppData\Local\Temp\0257ddd147e983c710726ab6fa0f8e32.exe
  "C:\Users\Admin\AppData\Local\Temp\0257ddd147e983c710726ab6fa0f8e32.exe"
  2⤵
  PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2068-1-0x00000000002F0000-0x00000000003F0000-memory.dmp

Filesize
1024KB

Download
memory/2068-2-0x0000000000130000-0x0000000000132000-memory.dmp

Filesize
8KB

Download
memory/2068-3-0x0000000000130000-0x0000000000132000-memory.dmp

Filesize
8KB

Download