Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
16-10-2024 17:13
Behavioral task
behavioral1
Sample
Built.exe
Resource
win7-20240903-en
General
-
Target
Built.exe
-
Size
6.9MB
-
MD5
c0016b96aeb25370a238bec4978a2b4e
-
SHA1
9eff3107fd308b110d3d660cbdf952fe484ada59
-
SHA256
b803d8573fd74702dc6685b2e87bdbc1766e5b67bce7880612c3d0af2663ce76
-
SHA512
8be40138438c39e95a2093e6c4703e1b00398363b486ec42814740276c4cd81cf5ec7c07f97ad3ff22246a4003a3d09693a6a8156882771288320213be0d2d6e
-
SSDEEP
98304:8vDjWM8JEE1rPZamaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfXeRpYKJJcGhEIF8:8v0seNTfm/pf+xk4dWRptrbWOjgrb
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
pid Process 2692 Built.exe -
resource yara_rule behavioral1/files/0x00050000000193f8-21.dat upx -
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 2380 wrote to memory of 2692 2380 Built.exe 30 PID 2380 wrote to memory of 2692 2380 Built.exe 30 PID 2380 wrote to memory of 2692 2380 Built.exe 30
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1.6MB
MD5bb46b85029b543b70276ad8e4c238799
SHA1123bdcd9eebcac1ec0fd2764a37e5e5476bb0c1c
SHA25672c24e1db1ba4df791720a93ca9502d77c3738eebf8b9092a5d82aa8d80121d0
SHA5125e993617509c1cf434938d6a467eb0494e04580ad242535a04937f7c174d429da70a6e71792fc3de69e103ffc5d9de51d29001a4df528cfffefdaa2cef4eaf31