Analysis
-
max time kernel
149s -
max time network
125s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
-
submitted
25-01-2024 17:23
General
-
Target
75150743ff3f209d18734cdf46daeb35.exe
-
Size
107KB
-
MD5
75150743ff3f209d18734cdf46daeb35
-
SHA1
f6c8e1401cc5ccf59ec78f989f625831106afa7a
-
SHA256
e0f0a0ac5dc00ba90806a85cd80701fac01f32144e8ab4b27f2adfd65470cdeb
-
SHA512
363bac5f709d4d53c8cc493a40a2d98eec7b1736e2a7ce83b2af77ac03b8bfe5f92d882a6cc5b5d007367539982ba919c4dcbcccf0683f607ecb779f6f21df51
-
SSDEEP
1536:tqM3dJNs4h6NZ/Lq3mw2Q7Oc5Pm5AtLMHTHmCfyk3i6EtQoU0M5o:8qWZ/MGc5Pm5oLaGCfyWoU0M5
Score
1/10
Malware Config
Signatures
-
Suspicious use of UnmapMainImage 1 IoCs
-
Suspicious use of WriteProcessMemory 7 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\75150743ff3f209d18734cdf46daeb35.exe"C:\Users\Admin\AppData\Local\Temp\75150743ff3f209d18734cdf46daeb35.exe"1⤵
- Suspicious use of UnmapMainImage
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\svchost.exesvchost.exe2⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2000-1-0x0000000000400000-0x0000000000414000-memory.dmpFilesize
80KB
-
memory/2000-0-0x0000000000240000-0x0000000000242000-memory.dmpFilesize
8KB
-
memory/2000-5-0x0000000000400000-0x0000000000414000-memory.dmpFilesize
80KB
-
memory/2528-2-0x0000000000080000-0x0000000000089000-memory.dmpFilesize
36KB
-
memory/2528-3-0x0000000000080000-0x0000000000089000-memory.dmpFilesize
36KB
-
memory/2528-4-0x0000000000080000-0x0000000000089000-memory.dmpFilesize
36KB
-
memory/2528-8-0x0000000000080000-0x0000000000089000-memory.dmpFilesize
36KB