1a92dbc49c1256cd2b338e3098fb4028862d74205ecd9903ca016f6b284b86e8

Analysis

max time kernel
121s
max time network
139s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
19/07/2024, 06:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Mating Season.exe
Size

638KB
MD5

457ec1e7fa4287a49d17bf4f0bb1844e
SHA1

85fc055218b5d1d95cbcef8e173e462d91a26714
SHA256

f93fb6a624e2a64cbea341bcba2debcab768eaef1bb7bed17ef7d78d29cefbe3
SHA512

7e6f46f905d42c9a07902af91657ab4df4d5d9ff9467c83276aa6c8ba16d02d2bb23baee118906e820957b4d259c31196d0db0e39da0d135bae26b8cae6756ea
SSDEEP

12288:boCCALB45PXnr10aWMzNeuOPQ+7XcP7K6:k4LB26M5eu9R

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1332	Mating Season.exe

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 1332 wrote to memory of 2072	1332	Mating Season.exe	31
PID 1332 wrote to memory of 2072	1332	Mating Season.exe	31
PID 1332 wrote to memory of 2072	1332	Mating Season.exe	31

C:\Users\Admin\AppData\Local\Temp\Mating Season.exe
"C:\Users\Admin\AppData\Local\Temp\Mating Season.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1332
- C:\Users\Admin\AppData\Local\Temp\UnityCrashHandler64.exe
  "C:\Users\Admin\AppData\Local\Temp\UnityCrashHandler64.exe" --attach 1332 3149824
  2⤵
  PID:2072

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1332-10-0x000007FFFFEC0000-0x000007FFFFED0000-memory.dmp

Filesize
64KB

Download
memory/1332-18-0x000007FFFFEB0000-0x000007FFFFEC0000-memory.dmp

Filesize
64KB

Download
memory/1332-34-0x000007FFFFEA0000-0x000007FFFFEB0000-memory.dmp

Filesize
64KB

Download
memory/1332-32-0x000007FFFFE80000-0x000007FFFFEA0000-memory.dmp

Filesize
128KB

Download
memory/1332-62-0x000007FFFFE60000-0x000007FFFFE70000-memory.dmp

Filesize
64KB

Download
memory/1332-88-0x000007FFFFE40000-0x000007FFFFE50000-memory.dmp

Filesize
64KB

Download
memory/1332-86-0x000007FFFFE30000-0x000007FFFFE40000-memory.dmp

Filesize
64KB

Download
memory/1332-100-0x000007FFFFE20000-0x000007FFFFE30000-memory.dmp

Filesize
64KB

Download
memory/1332-156-0x000007FFFFDC0000-0x000007FFFFDD0000-memory.dmp

Filesize
64KB

Download
memory/1332-158-0x000007FFFFDD0000-0x000007FFFFDE0000-memory.dmp

Filesize
64KB

Download
memory/1332-170-0x000007FFFFD70000-0x000007FFFFD80000-memory.dmp

Filesize
64KB

Download
memory/1332-172-0x000007FFFFD60000-0x000007FFFFD70000-memory.dmp

Filesize
64KB

Download
memory/1332-190-0x000007FFFFD50000-0x000007FFFFD60000-memory.dmp

Filesize
64KB

Download
memory/1332-194-0x000007FFFFD20000-0x000007FFFFD30000-memory.dmp

Filesize
64KB

Download
memory/1332-206-0x000007FFFFCD0000-0x000007FFFFCE0000-memory.dmp

Filesize
64KB

Download
memory/1332-208-0x000007FFFFCC0000-0x000007FFFFCD0000-memory.dmp

Filesize
64KB

Download
memory/1332-288-0x000007FFFFBE0000-0x000007FFFFBF0000-memory.dmp

Filesize
64KB

Download
memory/1332-286-0x000007FFFFCA0000-0x000007FFFFCB0000-memory.dmp

Filesize
64KB

Download
memory/1332-284-0x000007FFFFCF0000-0x000007FFFFD00000-memory.dmp

Filesize
64KB

Download
memory/1332-277-0x000007FFFFBF0000-0x000007FFFFC00000-memory.dmp

Filesize
64KB

Download
memory/1332-264-0x000007FFFFC00000-0x000007FFFFC10000-memory.dmp

Filesize
64KB

Download
memory/1332-254-0x000007FFFFC70000-0x000007FFFFC80000-memory.dmp

Filesize
64KB

Download
memory/1332-238-0x000007FFFFC20000-0x000007FFFFC30000-memory.dmp

Filesize
64KB

Download
memory/1332-233-0x000007FFFFC50000-0x000007FFFFC70000-memory.dmp

Filesize
128KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads