44f8066f26221811ada486cd0182f6d264eda747f67f42245bae9265a28180c4

General

Target

iubhnuerfwiuherwfiuhewfiuhewfiuiuefwuihefwuihewfuhewfuewfueuwfhi.bat
Size

583B
MD5

a88236b393cbea80f72d29785be483c3
SHA1

6ebf04c2270e2738f7c6d2ccb4f2eb2d38335f1f
SHA256

278fa8d4fb12b506bb712bc9a5562bc1718f88a0a53899ffe479b51c6bf55cf2
SHA512

fdd5202f6569e4822d3148417153d5b0e1446b731f162ace04f78a726d77555e6b5e9856be8c34f3fc046ba960d88084fb550adf155a496d01e6c97665da4aca

Score

1^/10

Malware Config

Signatures

Delays execution with timeout.exe 22 IoCs

evasion

Processes:

timeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exetimeout.exe

pid	process
1944	timeout.exe
220	timeout.exe
1100	timeout.exe
3544	timeout.exe
3752	timeout.exe
3900	timeout.exe
1104	timeout.exe
1904	timeout.exe
1128	timeout.exe
4068	timeout.exe
4444	timeout.exe
4572	timeout.exe
2688	timeout.exe
1184	timeout.exe
4580	timeout.exe
4516	timeout.exe
4520	timeout.exe
4504	timeout.exe
3756	timeout.exe
2740	timeout.exe
3204	timeout.exe
1072	timeout.exe

Suspicious use of WriteProcessMemory 44 IoCs

Processes:

cmd.exe

description	pid	process	target process
PID 3504 wrote to memory of 3756	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3756	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1904	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1904	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 2740	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 2740	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4572	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4572	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3544	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3544	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3204	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3204	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1072	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1072	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3752	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3752	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3900	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 3900	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1104	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1104	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1944	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1944	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4516	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4516	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4520	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4520	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 2688	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 2688	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1184	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1184	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1128	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1128	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4580	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4580	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4504	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4504	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 220	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 220	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4068	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4068	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4444	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 4444	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1100	3504	cmd.exe	timeout.exe
PID 3504 wrote to memory of 1100	3504	cmd.exe	timeout.exe

C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\iubhnuerfwiuherwfiuhewfiuhewfiuiuefwuihefwuihewfuhewfuewfueuwfhi.bat"
1⤵
- Suspicious use of WriteProcessMemory
PID:3504

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:3756

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1904

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:2740

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4572

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:3544

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:3204

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1072

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:3752

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:3900

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1104

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1944

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4516

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4520

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:2688

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1184

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1128

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4580

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4504

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:220

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4068

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:4444

C:\Windows\system32\timeout.exe
timeout 1
2⤵
- Delays execution with timeout.exe
PID:1100

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads