Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
16/10/2024, 00:36
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
eptfydgqkrerhxuq.exe
Resource
win7-20240903-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
eptfydgqkrerhxuq.exe
Resource
win10v2004-20241007-en
14 signatures
150 seconds
General
-
Target
eptfydgqkrerhxuq.exe
-
Size
2.2MB
-
MD5
c1d9f60cd95a73f8e44ea94e3aa7c0a4
-
SHA1
13ea3d0220f3a61b210731ed65e99a86d0757f4c
-
SHA256
a91d9f566a433a99e842f33931932c66b86f8c5b74b4322484e54acaa06a2cff
-
SHA512
b4dc9eacf095f3eb07e08cc782a99009e0be438f24ca79e53d8da727bfec20fbf8050e22382fb9ad44c02d956fb35447fdc5a90da46d18a71d8fa9ebecdf3f50
-
SSDEEP
24576:VnV20g3y1Nu/hZ99HKG354VTH62rtJNxlf/8D9+qNgzQJWDqVT86sSvPi9tuyU:uWohZTKi49Bff/1QQDqrsSiru
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1668 wrote to memory of 2660 1668 eptfydgqkrerhxuq.exe 31 PID 1668 wrote to memory of 2660 1668 eptfydgqkrerhxuq.exe 31 PID 1668 wrote to memory of 2660 1668 eptfydgqkrerhxuq.exe 31