Analysis
-
max time kernel
45s -
max time network
16s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
22-04-2024 06:49
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Lisect_AV-T_G3_102.exe
Resource
win7-20231129-en
windows7-x64
2 signatures
120 seconds
Behavioral task
behavioral2
Sample
Lisect_AV-T_G3_102.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
1 signatures
120 seconds
General
-
Target
Lisect_AV-T_G3_102.exe
-
Size
1.2MB
-
MD5
5b0938a02b26daeaf5bc2e32b4bf230a
-
SHA1
1c129ff4d884a860b5848eee718d9e2c4d87ab23
-
SHA256
5bc87bb01f0ff1a140369b3bbd588bf1a63e45f03349d15e56f4bbf81dfa1d5b
-
SHA512
a6c2061786438c567943a623db8057940b01e8b3c49165c133d36ae4d5d10cfa0ae3ddcd124c4aaefe600e8d3692e7c63423905aa8b7ca009e6a0654e4bc164b
-
SSDEEP
24576:BvgxenCojkph7XhULSGqQbRPcBdJFsd6GxtQF+:Bs8bREUxQF+
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2040 3024 WerFault.exe 27 -
Suspicious use of WriteProcessMemory 4 IoCs
description pid Process procid_target PID 3024 wrote to memory of 2040 3024 Lisect_AV-T_G3_102.exe 28 PID 3024 wrote to memory of 2040 3024 Lisect_AV-T_G3_102.exe 28 PID 3024 wrote to memory of 2040 3024 Lisect_AV-T_G3_102.exe 28 PID 3024 wrote to memory of 2040 3024 Lisect_AV-T_G3_102.exe 28