9cf90caccb359ea916c2ca241752f40040117b896b5b051cb6d6e36c1197f2f9

Analysis

max time kernel
26s
max time network
14s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
25/07/2024, 21:03

Target

sdw.exe
Size

44KB
MD5

4dc89e7c62e906df22e866fb03d61e33
SHA1

3237654658ad8edcae79c3fc3a0cabb17b0b1c8e
SHA256

9cf90caccb359ea916c2ca241752f40040117b896b5b051cb6d6e36c1197f2f9
SHA512

51d199c28ec9df7c7932f7603610ab726492ffff5cc7dae27dfa5fc49fb5f0f1da9b2c93bea9328dd1b7a8fa0e62c96537ab0ceedc5d3e772f48afa1f2a256a7
SSDEEP

768:vQjJ6s4TaFi8QooCWWg2dBgVXLl3xJh/7KFCPFm0tIm8ooNsx:spEookg2wVl0C4Fm1x

Score

1^/10

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
3496	sdw.exe

C:\Users\Admin\AppData\Local\Temp\sdw.exe
"C:\Users\Admin\AppData\Local\Temp\sdw.exe"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
PID:3496

memory/3496-0-0x00007FFBFDD93000-0x00007FFBFDD95000-memory.dmp

Filesize
8KB

Download
memory/3496-1-0x000001A0F88F0000-0x000001A0F8902000-memory.dmp

Filesize
72KB

Download
memory/3496-2-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download
memory/3496-3-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download
memory/3496-4-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download
memory/3496-5-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download
memory/3496-6-0x00007FFBFDD93000-0x00007FFBFDD95000-memory.dmp

Filesize
8KB

Download
memory/3496-7-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download
memory/3496-8-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download
memory/3496-10-0x00007FFBFDD90000-0x00007FFBFE851000-memory.dmp

Filesize
10.8MB

Download