20d83654ce60e098ca535daf03e8e3dd70d428323592cd4ff562c420e12291a9

Analysis

max time kernel
4s
max time network
135s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
04-01-2024 01:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3f99945238386bbfa19cdd9ad4cebc41.exe
Size

1.1MB
MD5

3f99945238386bbfa19cdd9ad4cebc41
SHA1

3e9e510176bfa033526217f21b514b252197ed9b
SHA256

20d83654ce60e098ca535daf03e8e3dd70d428323592cd4ff562c420e12291a9
SHA512

c45512bf90f2464b52a663b47c6faa4791ac30bbddec8c90029d42b45b45916e46be268ea8e69b4927615250a9c984e720def135e04452485e53770cf1076334
SSDEEP

24576:4WvknOMEfzMflkqhA08WhmH07cQgfeNZNor50brdoG22v+m:4UeOMmykqetWhj7cQceNZ1doG22v+m

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
3512	Setup.exe

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 1036 wrote to memory of 3512	1036	3f99945238386bbfa19cdd9ad4cebc41.exe	17
PID 1036 wrote to memory of 3512	1036	3f99945238386bbfa19cdd9ad4cebc41.exe	17
PID 1036 wrote to memory of 3512	1036	3f99945238386bbfa19cdd9ad4cebc41.exe	17

C:\Users\Admin\AppData\Local\Temp\3f99945238386bbfa19cdd9ad4cebc41.exe
"C:\Users\Admin\AppData\Local\Temp\3f99945238386bbfa19cdd9ad4cebc41.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:1036
- C:\Users\Admin\AppData\Local\Temp\a2DXPAD3tM\Z1VKpH8t\Setup.exe
  C:\Users\Admin\AppData\Local\Temp\a2DXPAD3tM\Z1VKpH8t\Setup.exe --relaunch
  2⤵
  - Executes dropped EXE
  PID:3512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1036-42-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-63-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-11-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-17-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-22-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-27-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-34-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-1-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-48-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-54-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-60-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-65-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-64-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-41-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-62-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-61-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-59-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-39-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-57-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-56-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-55-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-52-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-53-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-51-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-203-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-50-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-49-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-47-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-46-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-45-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-44-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-43-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-40-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-3-0x0000000000400000-0x000000000051ED14-memory.dmp

Filesize
1.1MB

Download
memory/1036-58-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-38-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-37-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-35-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-36-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-33-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-32-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-31-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-30-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-29-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-28-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-26-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-25-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-24-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-846-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-23-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-21-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-20-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-18-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-19-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-16-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-15-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-14-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-13-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-12-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-10-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-9-0x0000000000400000-0x000000000051ED14-memory.dmp

Filesize
1.1MB

Download
memory/1036-7-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-8-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/1036-0-0x0000000002240000-0x000000000233E000-memory.dmp

Filesize
1016KB

Download
memory/3512-619-0x0000000000700000-0x00000000007FE000-memory.dmp

Filesize
1016KB

Download
memory/3512-837-0x0000000000700000-0x00000000007FE000-memory.dmp

Filesize
1016KB

Download
memory/3512-425-0x0000000000400000-0x000000000051ED14-memory.dmp

Filesize
1.1MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads