133149390cb34a5d4df68c907efe3d6997cc600cc30145081820a793475315b0 | Triage

Analysis

max time kernel
195s
max time network
204s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
10/06/2024, 20:30

Sharing

Report Analysis Logs

General

Target

setsgenerator.bat
Size

260B
MD5

2dc2832a11cd603f682c9a9fb48ca35c
SHA1

39cc5f6f67e992d2350e8d929b4abb482b90ef0b
SHA256

133149390cb34a5d4df68c907efe3d6997cc600cc30145081820a793475315b0
SHA512

3e4ee9585d2b2caefe2d812af1f7ea1004b51b0da11def6b938a3e2b310c7658a03040ea8c0505b9e6f1601376fa271fa1f5cdb6dfaff2d3c2f930cc6f5bab2f

Score

1^/10

Malware Config

Signatures

Delays execution with timeout.exe 1 IoCs

pid	Process
1924	timeout.exe

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 4808 wrote to memory of 932	4808	cmd.exe	83
PID 4808 wrote to memory of 932	4808	cmd.exe	83
PID 4808 wrote to memory of 1924	4808	cmd.exe	95
PID 4808 wrote to memory of 1924	4808	cmd.exe	95

C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\setsgenerator.bat"
1⤵
- Suspicious use of WriteProcessMemory
PID:4808
- C:\Windows\system32\mode.com
  mode 50
  2⤵
  PID:932
- C:\Windows\system32\timeout.exe
  timeout /t 10
  2⤵
  - Delays execution with timeout.exe
  PID:1924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads