Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
28-05-2024 05:55
Behavioral task
behavioral1
Sample
3.exe
Resource
win7-20240221-en
windows7-x64
8 signatures
150 seconds
Behavioral task
behavioral2
Sample
out.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
General
-
Target
out.exe
-
Size
40KB
-
MD5
1dc19cb4abfbdfce5b34756603fb5d43
-
SHA1
8b2d7f82fc13888bf0fa97c1fe73ae8eb615b703
-
SHA256
c1bac7436253ca3e66f36dfdbc1f237cf4c6bc0cf7f2dec5dd9ed9611d16191f
-
SHA512
394dc2752498ebea6ae44172e337f764034fd78187b79d5a8c1c525811802c04b20edb9a885aecc4f6e417e250ca42b08993774fee40986e1eb3209a05ce8e5d
-
SSDEEP
384:moyzEpcGhIxJl9JEdauBNa/nu333s8JrxRMt0GNtslmlLpB1pyLloyGw6Bm7lpIn:mo4EpThIpEdauX3hS/sjfkGudUj9Vg
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 1988 2100 WerFault.exe 27 -
Suspicious use of WriteProcessMemory 4 IoCs
description pid Process procid_target PID 2100 wrote to memory of 1988 2100 out.exe 28 PID 2100 wrote to memory of 1988 2100 out.exe 28 PID 2100 wrote to memory of 1988 2100 out.exe 28 PID 2100 wrote to memory of 1988 2100 out.exe 28