d08f236eb8834ed053dca1fc79e270f215de3596ae4b981ec3a9ba9c3b12fe4d | Triage

Resubmissions

07/08/2024, 12:34

240807-pr5vvasbrf 3

Analysis

max time kernel
437s
max time network
439s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
07/08/2024, 12:34

Sharing

Report Analysis Logs

General

Target

createdump.exe
Size

64KB
MD5

b14633999299b42569b2bee1b8c2c2fc
SHA1

291c0aa4bfe2ca864401ce32c00ba00e3d0778d0
SHA256

8a56d1cab292bc81a6fdaa0f57321580e53c5334388ecd40f538095baa3f9c96
SHA512

3e048229e5b77964bc31c6f24d0bc517433c849af543a4a98abb507ce96067c73ef962ad29afd443c6733a8b8b56648744cceca4135976746fb1df74741f8c8b
SSDEEP

768:6DM0LeoUSVZxAxbIQ/Zs9OHEAQp/olVS86ouL3ETLrv/FClqmT9zX+:0eotVy48HEADlVYS3vNih5zX+

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
3016	createdump.exe
3016	createdump.exe

C:\Users\Admin\AppData\Local\Temp\createdump.exe
"C:\Users\Admin\AppData\Local\Temp\createdump.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads