Analysis
-
max time kernel
357s -
max time network
358s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
04-09-2024 17:47
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
explorer.exe
Resource
win7-20240903-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
explorer.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
explorer.exe
-
Size
1.2MB
-
MD5
c3a6b2b7daa411be1f57ec1e03386a85
-
SHA1
7b2e2a7d2b00de171d360716bf4b09c05ba384b4
-
SHA256
4a405ef6bcb8841e74c736057f338d0e095516d05fbccca472d82ac7c80a7f9f
-
SHA512
1630fbbd1add669ec1392afbac60f87df21c0d42856a9c0d070c0bd2f1ef2b0a496e2d21ff42c270118f041895d6f8ff1289f8c78306e374324067a8ec083538
-
SSDEEP
24576:Kljbo3K4b3DEWaWOD2jn0HdGz6maK1PZQQTKarYM3M3Qjf2MslMucieKHmbfbf+Q:KyK5LGbfbfX
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 2816 wrote to memory of 2688 2816 explorer.exe 33 PID 2816 wrote to memory of 2688 2816 explorer.exe 33 PID 2816 wrote to memory of 2688 2816 explorer.exe 33