Analysis
-
max time kernel
118s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
20-05-2024 22:35
Static task
static1
Behavioral task
behavioral1
Sample
sample.exe
Resource
win7-20240508-en
windows7-x64
1 signatures
150 seconds
General
-
Target
sample.exe
-
Size
305.4MB
-
MD5
8ac77f704640fa1c8feb9172302bf313
-
SHA1
9d767e665046f05a4d33431804d8fd82e2d11659
-
SHA256
9fcdb329122b918110be82e8040386798f1a0c28ad1d103bf06e5df6ec820aca
-
SHA512
286eb2cc9ae459ab3a23f2b154f7c932f406086d8facb439cd4e36ede755df2ca07ac87c67276cefe9bea363d5a583c4fe4ce4ea9827cf598e834812fb7509e2
-
SSDEEP
24576:HB/2VURbbHgU3pooooooooooooooooooooooooooooooooooooooooooooooooo7:HuU3HFq
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
sample.exedescription pid process target process PID 2232 wrote to memory of 1796 2232 sample.exe WerFault.exe PID 2232 wrote to memory of 1796 2232 sample.exe WerFault.exe PID 2232 wrote to memory of 1796 2232 sample.exe WerFault.exe