Overview

overview

7

Static

static

3

iZotope Mu...CE.exe

windows11-21h2-x64

7

Analysis

  • max time kernel
    151s
  • max time network
    151s
  • platform
    windows11-21h2_x64
  • resource
    win11-20231222-en
  • resource tags

    arch:x64arch:x86image:win11-20231222-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    26/01/2024, 08:16

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    iZotope Music Production Suite Pro 2021.11 CE.exe

  • Size

    898.8MB

  • MD5

    2056a02c59c31874e18189457ae9d4be

  • SHA1

    6993da8d4958992d22e60aef112e189ffec841e7

  • SHA256

    a90c157725ccea67fc1befc240b28b4db9b8a8f1cdc0cdcb5b731c7a6fca1fdd

  • SHA512

    459ac0c3d9a7ffb97dd73765432d7c1b86827c5c5a37569c6f1b74f15edc4fdfb0abb5b9f340f6a9141376077570974297743fdc82beabcae5ebc5cba1567a50

  • SSDEEP

    25165824:xVL6cliNyvXk7CMtwum5O9EBG/HZHeR7f4Tu0hBB:31l+yvNzO1/HY0fhBB

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\iZotope Music Production Suite Pro 2021.11 CE.exe
    "C:\Users\Admin\AppData\Local\Temp\iZotope Music Production Suite Pro 2021.11 CE.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3172
    • C:\Users\Admin\AppData\Local\Temp\is-OOF2G.tmp\iZotope Music Production Suite Pro 2021.11 CE.tmp
      "C:\Users\Admin\AppData\Local\Temp\is-OOF2G.tmp\iZotope Music Production Suite Pro 2021.11 CE.tmp" /SL5="$600D6,941313688,906240,C:\Users\Admin\AppData\Local\Temp\iZotope Music Production Suite Pro 2021.11 CE.exe"
      2⤵
      • Executes dropped EXE
      PID:1364

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\is-OOF2G.tmp\iZotope Music Production Suite Pro 2021.11 CE.tmp
          Filesize

          633KB

          MD5

          1a92494c1840b171e57b412d5846fa0e

          SHA1

          f2eeeeee70036cf38dc66b6dbc07ad992336ca55

          SHA256

          2db3fbf291b7e39215200f355a9674858ccd48e38e8ec658f5a9e6391586ca4e

          SHA512

          d2dc50af2b78844eb799ee31e153d7190c5bd34caa21434e8929d9f238f5cb76a9f03671b84d049007364a6097d2b1583c5d0efbde8dbe478a65ec91a3a789cb

          Download Submit

        • memory/1364-6-0x0000000002720000-0x0000000002721000-memory.dmp

          Filesize

          4KB

          Download

        • memory/1364-9-0x0000000000400000-0x0000000000723000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1364-12-0x0000000002720000-0x0000000002721000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3172-0-0x0000000000400000-0x00000000004EB000-memory.dmp

          Filesize

          940KB

          Download

        • memory/3172-2-0x0000000000400000-0x00000000004EB000-memory.dmp

          Filesize

          940KB

          Download

        • memory/3172-8-0x0000000000400000-0x00000000004EB000-memory.dmp

          Filesize

          940KB

          Download