7410668fa18c8cee23c14b28e2b562dfff02940d03b3f38dd7155c29ca2e2fc5

Analysis

max time kernel
92s
max time network
123s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
02/02/2024, 23:46

Target

8ad71435f04e9259c8e1f704c1678a5e.exe
Size

45KB
MD5

8ad71435f04e9259c8e1f704c1678a5e
SHA1

be14fb26aaa3b1f49fa9c7bd973753c49efd73a6
SHA256

7410668fa18c8cee23c14b28e2b562dfff02940d03b3f38dd7155c29ca2e2fc5
SHA512

e81507e74051a56d2fc29a0e5b86ce74310ca9a5a40918e6187e24405d9a6f0dcbdfc77a2962754fcce41ff9555a6b7e7f179ae3d780fc9c3f597769f2e9b4ad
SSDEEP

768:ryYVE+sIYv7xezYJctfo1VoTg+ZKp1U6XDF93AIU2J+5X6GCPqhXs7Ulf7DRZg:ryY+dVv7xbJctKoTc1rD220RtCPq7JW

Score

5^/10

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process	procid_target
PID 2728 set thread context of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85

Suspicious behavior: EnumeratesProcesses 4 IoCs

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2728	8ad71435f04e9259c8e1f704c1678a5e.exe

Suspicious use of WriteProcessMemory 11 IoCs

description	pid	Process	procid_target
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 2728 wrote to memory of 4500	2728	8ad71435f04e9259c8e1f704c1678a5e.exe	85
PID 4500 wrote to memory of 3436	4500	8ad71435f04e9259c8e1f704c1678a5e.exe	21
PID 4500 wrote to memory of 3436	4500	8ad71435f04e9259c8e1f704c1678a5e.exe	21
PID 4500 wrote to memory of 3436	4500	8ad71435f04e9259c8e1f704c1678a5e.exe	21
PID 4500 wrote to memory of 3436	4500	8ad71435f04e9259c8e1f704c1678a5e.exe	21

memory/2728-0-0x0000000000400000-0x000000000042C000-memory.dmp

Filesize
176KB

Download
memory/2728-7-0x0000000000400000-0x000000000042C000-memory.dmp

Filesize
176KB

Download
memory/3436-9-0x000000007FFF0000-0x000000007FFF7000-memory.dmp

Filesize
28KB

Download
memory/3436-10-0x000000007FFD0000-0x000000007FFD1000-memory.dmp

Filesize
4KB

Download
memory/4500-3-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/4500-5-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/4500-6-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/4500-8-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4500-13-0x0000000000410000-0x00000000004D9000-memory.dmp

Filesize
804KB

Download
memory/4500-14-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/4500-15-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download