Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240220-en -
resource tags
arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system -
submitted
13/06/2024, 03:39
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
lowp.exe
Resource
win7-20240220-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
lowp.exe
Resource
win10v2004-20240508-en
0 signatures
150 seconds
General
-
Target
lowp.exe
-
Size
145KB
-
MD5
a03347e7e784c0ecf184ef07ea097f73
-
SHA1
f378a1746a16fc4ebe6747aeea3917a276000d24
-
SHA256
47e0f4c029be93ddec7b5240992d768ccf852e9c2724cb738971f789fa7d5676
-
SHA512
9db3bad0ceda736f9614ec288f03b1ffe6762470a0511857cb85c41eaa9c59cabc27c06248870f53fef7923e2eeb5f5745e4d12c467e173fe3db7aa2a1e7f6bb
-
SSDEEP
3072:bIl+HgRe/nVT4T9SsuGjOc1HsvIAIQrPWyic:bvARe/d4ssp6ctSIVX
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1684 wrote to memory of 1964 1684 lowp.exe 28 PID 1684 wrote to memory of 1964 1684 lowp.exe 28 PID 1684 wrote to memory of 1964 1684 lowp.exe 28