Analysis

  • max time kernel
    92s
  • max time network
    122s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05-02-2024 20:32

General

  • Target

    Pixiv-Nginx-main/nginx.exe

  • Size

    3.5MB

  • MD5

    73bccfa7906992d408755a9ca6594a81

  • SHA1

    64c2faa172167b8c0165e785777a00a6fe19f298

  • SHA256

    0dc155039750626f3eeba2b2cdcc450e91c5aa613af6f4f6f714a3108a2846d8

  • SHA512

    e6e23455abfadee20b0e216b2c8d892b9a815bd5b090142e63ea57daa125040ce4534a9baeed26c2d15ea16e59b970f384588cec6de4453023c9fa2d1f89c678

  • SSDEEP

    49152:qkUR/ssQKiHM5ISQvQ0EJAeSToASBpdgBTcL3mSliv:qt0sPiHM5IST0pe5ASNg

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Pixiv-Nginx-main\nginx.exe
    "C:\Users\Admin\AppData\Local\Temp\Pixiv-Nginx-main\nginx.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2408
    • C:\Users\Admin\AppData\Local\Temp\Pixiv-Nginx-main\nginx.exe
      "C:\Users\Admin\AppData\Local\Temp\Pixiv-Nginx-main\nginx.exe"
      2⤵
        PID:5064

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads