Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
30/05/2024, 13:58
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20231129-en
2 signatures
150 seconds
General
-
Target
file.exe
-
Size
406KB
-
MD5
ca9a95daa96005c43b2402094800081a
-
SHA1
82d78d90972f4e7d3494ff9bab33e6b3d65b82ed
-
SHA256
0260ea7f3ee2a5b7cc6d2b648d7850ec0f96b70674ab0f9386aa6d07f59d1274
-
SHA512
b9093fb0ec4d1888a2c07630fe07ae1c28cd61289611a8965a8b1ab5c83a59fae9e690f1fd086290988250efb4e5dcd322ff5f355402863004c21ac0f05a22a1
-
SSDEEP
6144:jSuxvfHBpjCvTorgayosTkSqaN5K2lsmYpK8SMqvWvbbr2DCXAckx64A1vgwt4:jSIBpjCvMUXSK8SMqvWTPwCXAsh1o84
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2192 2088 WerFault.exe 27 -
Suspicious use of WriteProcessMemory 4 IoCs
description pid Process procid_target PID 2088 wrote to memory of 2192 2088 file.exe 28 PID 2088 wrote to memory of 2192 2088 file.exe 28 PID 2088 wrote to memory of 2192 2088 file.exe 28 PID 2088 wrote to memory of 2192 2088 file.exe 28