Resubmissions
31/10/2024, 06:08
241031-gv683ssard 831/10/2024, 05:56
241031-gm4g8asbmn 531/10/2024, 05:55
241031-gmjstasbln 5Analysis
-
max time kernel
134s -
max time network
207s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
31/10/2024, 05:56
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
artifact.exe
Resource
win10v2004-20241007-en
2 signatures
300 seconds
Behavioral task
behavioral2
Sample
artifact.exe
Resource
win10ltsc2021-20241023-en
2 signatures
300 seconds
Behavioral task
behavioral3
Sample
artifact.exe
Resource
win11-20241007-en
2 signatures
300 seconds
General
-
Target
artifact.exe
-
Size
12.4MB
-
MD5
d5f1f49da304a6471279d0427df47b10
-
SHA1
270ccd40ec7280d081df2a54ab7315ada5cb0a07
-
SHA256
166da15b42a0184c5375be94ab1180052eaf08eb09cb1af406329d96f542d75f
-
SHA512
793f5fbb0ba4beabb6affceac4d28e68a3484c70f75344cc4ec835c66f0946d3755e7c645d55b252ae819f6df72dc8674b2f2a77371cc2701a8287cb56e2ce60
-
SSDEEP
393216:npPpFTO4wV4fq3jqkbrba+ppiQqKY3qz:npPpFTO4wOfq3mkHu+pthY3qz
Score
5/10
Malware Config
Signatures
-
Suspicious use of NtSetInformationThreadHideFromDebugger 2 IoCs
pid Process 2728 artifact.exe 2728 artifact.exe -
Suspicious behavior: EnumeratesProcesses 2 IoCs
pid Process 2728 artifact.exe 2728 artifact.exe