2ab620cda8ec28e775673d93c0e25db26d5c042fba24b8bde160ad963bd18dda

Analysis

max time kernel
7s
max time network
2s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
26-10-2024 00:15

Target

Spotify Gen2.exe
Size

5.9MB
MD5

b3ba5d84c400a142171cbf1ad29b9cbd
SHA1

7220c2fa5bc3a688e8d28e29c2f0ef5743514286
SHA256

2ab620cda8ec28e775673d93c0e25db26d5c042fba24b8bde160ad963bd18dda
SHA512

4ae0a0e5e98bfd3a557bc3d12c526609073f73e2d0391b95cb18b89b2e39479f359ecec0ea552c75e03d94e2d9129b22bc46096176e6b38644001202fef50b35
SSDEEP

98304:z7De7pzWqX8MMhJMjarCtaCObO/OH9KkqQz4W1kgeDVFMZu3/MQt:z+NzWvB6yA+KO0WR4iZTQt

Score

7^/10

upx

Loads dropped DLL 1 IoCs

pid	Process
2816	Spotify Gen2.exe

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/files/0x000500000001a020-21.dat	upx
behavioral1/memory/2816-23-0x000007FEF6950000-0x000007FEF6DB6000-memory.dmp	upx

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 2028 wrote to memory of 2816	2028	Spotify Gen2.exe	30
PID 2028 wrote to memory of 2816	2028	Spotify Gen2.exe	30
PID 2028 wrote to memory of 2816	2028	Spotify Gen2.exe	30

C:\Users\Admin\AppData\Local\Temp\Spotify Gen2.exe
"C:\Users\Admin\AppData\Local\Temp\Spotify Gen2.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:2028
- C:\Users\Admin\AppData\Local\Temp\Spotify Gen2.exe
  "C:\Users\Admin\AppData\Local\Temp\Spotify Gen2.exe"
  2⤵
  - Loads dropped DLL
  PID:2816

C:\Users\Admin\AppData\Local\Temp\_MEI20282\python310.dll

Filesize
1.4MB

MD5
3f782cf7874b03c1d20ed90d370f4329

SHA1
08a2b4a21092321de1dcad1bb2afb660b0fa7749

SHA256
2a382aff16533054e6de7d13b837a24d97ea2957805730cc7b08b75e369f58d6

SHA512
950c039eb23ed64ca8b2f0a9284ebdb6f0efe71dde5bbf0187357a66c3ab0823418edca34811650270eea967f0e541eece90132f9959d5ba5984405630a99857

Download Submit
memory/2816-23-0x000007FEF6950000-0x000007FEF6DB6000-memory.dmp

Filesize
4.4MB

Download