77e9441c8318a0827c62e87fe4213908f64dafa7d22611679ab8e5f560e21ffa

Analysis

max time kernel
120s
max time network
123s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
24/02/2024, 18:03

Target

a2675077f15ec3b82e599b79ed7da2ed.exe
Size

63KB
MD5

a2675077f15ec3b82e599b79ed7da2ed
SHA1

d1144ba95a1c9313543b24bedf04bb8eb358cfc2
SHA256

77e9441c8318a0827c62e87fe4213908f64dafa7d22611679ab8e5f560e21ffa
SHA512

66270cc8d4b3367ad8d4f0d9ba11304758b830698d5d31794228d6a8aabb98991192c0c7aba7a2e7c0c344763aa1ed450aa3040aa2ba41fc51ccb75a01a455a0
SSDEEP

768:XxYao51bcgBH5T9Zztj7CzrWBwjJCO6l+TtAsUuc+8JZQUf/lFv9cxTyOAQJIngL:XOmg5Tf9u8wj+MpJc+8JhXlR9ceq3zP

Score

5^/10

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process	procid_target
PID 2212 set thread context of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2036	a2675077f15ec3b82e599b79ed7da2ed.exe
2036	a2675077f15ec3b82e599b79ed7da2ed.exe

Suspicious use of WriteProcessMemory 11 IoCs

description	pid	Process	procid_target
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2212 wrote to memory of 2036	2212	a2675077f15ec3b82e599b79ed7da2ed.exe	28
PID 2036 wrote to memory of 1236	2036	a2675077f15ec3b82e599b79ed7da2ed.exe	17
PID 2036 wrote to memory of 1236	2036	a2675077f15ec3b82e599b79ed7da2ed.exe	17
PID 2036 wrote to memory of 1236	2036	a2675077f15ec3b82e599b79ed7da2ed.exe	17
PID 2036 wrote to memory of 1236	2036	a2675077f15ec3b82e599b79ed7da2ed.exe	17

memory/1236-11-0x000000007FFF0000-0x000000007FFF7000-memory.dmp

Filesize
28KB

Download
memory/1236-14-0x000000007EFD0000-0x000000007EFD1000-memory.dmp

Filesize
4KB

Download
memory/2036-0-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-2-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-4-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-6-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-8-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-9-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-10-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/2036-23-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2036-25-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download