18ea6ad6b98115732bcbf1d2ae2e9e63bd5964f6f4142cbc2b470301670aabd2

Analysis

max time kernel
150s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
26/01/2024, 11:57

Target

774bd3dbebd84f9ce528793c92f4af36.exe
Size

77KB
MD5

774bd3dbebd84f9ce528793c92f4af36
SHA1

1e79c17cbbd109a9231e30a485aa160eaeb26a82
SHA256

18ea6ad6b98115732bcbf1d2ae2e9e63bd5964f6f4142cbc2b470301670aabd2
SHA512

11dfd714787f5d9b4a90102182a4a7a99b379ab22bc4d6f0db37a41130466e43d5db70289f34dc147e3c734626e093dad851e8898a33404d4478878dd5c16fa8
SSDEEP

1536:pleZSALM/Mv6QJ3rxXV7I8M5mnxoJVl3gwyCXFX8dv:pB/Mv6QBlu8MwxobDyCVX

Score

1^/10

Suspicious use of UnmapMainImage 1 IoCs

pid	Process
2176	774bd3dbebd84f9ce528793c92f4af36.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 2176 wrote to memory of 2744	2176	774bd3dbebd84f9ce528793c92f4af36.exe	86
PID 2176 wrote to memory of 2744	2176	774bd3dbebd84f9ce528793c92f4af36.exe	86
PID 2176 wrote to memory of 2744	2176	774bd3dbebd84f9ce528793c92f4af36.exe	86
PID 2176 wrote to memory of 2744	2176	774bd3dbebd84f9ce528793c92f4af36.exe	86
PID 2176 wrote to memory of 2744	2176	774bd3dbebd84f9ce528793c92f4af36.exe	86
PID 2176 wrote to memory of 2744	2176	774bd3dbebd84f9ce528793c92f4af36.exe	86

memory/2176-0-0x00000000001D0000-0x00000000001D1000-memory.dmp

Filesize
4KB

Download
memory/2176-2-0x00000000001E0000-0x00000000001F2000-memory.dmp

Filesize
72KB

Download
memory/2176-4-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/2176-5-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/2744-6-0x0000000000D00000-0x0000000000D0E000-memory.dmp

Filesize
56KB

Download
memory/2744-7-0x0000000000CA0000-0x0000000000CA9000-memory.dmp

Filesize
36KB

Download
memory/2744-10-0x0000000000CA0000-0x0000000000CA9000-memory.dmp

Filesize
36KB

Download