Resubmissions
22-08-2024 15:14
240822-smnbsatepf 10Analysis
-
max time kernel
12s -
max time network
21s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
22-08-2024 15:14
Behavioral task
behavioral1
Sample
Injector.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
Injector.exe
Resource
win10v2004-20240802-en
General
-
Target
Injector.exe
-
Size
152.0MB
-
MD5
27f2dbc37cba31780461ca971834c470
-
SHA1
c369476c5c7e31dd22e78ed049c3f762f5e14e4c
-
SHA256
c5f513dc12c9ef48e960d235428575de55c4c45091c9ecac3a1af5a7ea10f9fa
-
SHA512
f7a68816a6c053b3bf762a1ca12e43dcbdc6098eaf8ed2101674e4c4d06d1f7ac57f220f9f9da4a95b4903c6a213961bd6ecec59cc5ce6dcddf2c1e576af513f
-
SSDEEP
1572864:KYLX5WJoWbgWRSgkNOXWxtQSNBasQIEzSmySOI+Br26VGnz1QrKMcsEkKFcwe:nX5M3gZcKCRsqzSmySb+I6deMfEkzwe
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
Processes:
Injector.exepid Process 2620 Injector.exe -
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
Injector.exedescription pid Process procid_target PID 2664 wrote to memory of 2620 2664 Injector.exe 30 PID 2664 wrote to memory of 2620 2664 Injector.exe 30 PID 2664 wrote to memory of 2620 2664 Injector.exe 30
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
5.5MB
MD558e01abc9c9b5c885635180ed104fe95
SHA11c2f7216b125539d63bd111a7aba615c69deb8ba
SHA256de1b95d2e951fc048c84684bc7df4346138910544ee335b61fc8e65f360c3837
SHA512cd32c77191309d99aeed47699501b357b35669123f0dd70ed97c3791a009d1855ab27162db24a4bd9e719b68ee3b0539ee6db88e71abb9a2d4d629f87bc2c081