110c5eec940f3abb8b3a671cd292bc9ef65772168325a7949290e9828353824a

Analysis

max time kernel
30s
max time network
32s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
07/06/2024, 17:46

Target

110c5eec940f3abb8b3a671cd292bc9ef65772168325a7949290e9828353824a.exe
Size

1.7MB
MD5

e397775e130add76d0140c413efd183f
SHA1

b5263b23ee594e06f42dfe95266dbc2d5d394a29
SHA256

110c5eec940f3abb8b3a671cd292bc9ef65772168325a7949290e9828353824a
SHA512

fa3dad95d1ddab891b21222b735103403b81fbfd2cff3bc7daa567920b5f7a75ff0043d7b3df246d042376e79180ff5b6948c4014a22a73f2c29056974a7abea
SSDEEP

49152:y4T8JANOZtUWtr4CiVKyWtsPNdxfAeDFyQoo4I6+uyF6:yiNOHtr4CiVKyWtsPNVDFTohGL

Score

1^/10

Suspicious behavior: EnumeratesProcesses 4 IoCs

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1192 wrote to memory of 3712	1192	110c5eec940f3abb8b3a671cd292bc9ef65772168325a7949290e9828353824a.exe	84
PID 1192 wrote to memory of 3712	1192	110c5eec940f3abb8b3a671cd292bc9ef65772168325a7949290e9828353824a.exe	84
PID 3712 wrote to memory of 2960	3712	cmd.exe	86
PID 3712 wrote to memory of 2960	3712	cmd.exe	86

memory/1192-0-0x0000000180000000-0x00000001801EA000-memory.dmp

Filesize
1.9MB

Download