Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
23-11-2024 03:05
General
-
Target
dc88cca0c72a2d4c7f1bc6dcbea6e36825270ed11e34c08f80ee22fb146ca31f.exe
-
Size
13.3MB
-
MD5
2dbf5e00223bd7d14ca7ed7be362866f
-
SHA1
034858ad907ea7bc24a77e51140d3b97efd7ab21
-
SHA256
dc88cca0c72a2d4c7f1bc6dcbea6e36825270ed11e34c08f80ee22fb146ca31f
-
SHA512
e400087661f32adf1626c166c178638b3eb1d9d064f1d1e7547d802bc8c718d555e11fafb226b6e3ba9d4801ee3040054164680813f75c243bec18c2a3a18789
-
SSDEEP
393216:V9YiZ+XMCHWUjccuICvR/P0vKfXmsg8YiZdo:V9YiZ+XMb8JE/svKOudo
Score
7/10
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\dc88cca0c72a2d4c7f1bc6dcbea6e36825270ed11e34c08f80ee22fb146ca31f.exe"C:\Users\Admin\AppData\Local\Temp\dc88cca0c72a2d4c7f1bc6dcbea6e36825270ed11e34c08f80ee22fb146ca31f.exe"1⤵
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\dc88cca0c72a2d4c7f1bc6dcbea6e36825270ed11e34c08f80ee22fb146ca31f.exe"C:\Users\Admin\AppData\Local\Temp\dc88cca0c72a2d4c7f1bc6dcbea6e36825270ed11e34c08f80ee22fb146ca31f.exe"2⤵
- Loads dropped DLL
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
5.8MB
MD5b9de917b925dd246b709bb4233777efd
SHA1775f258d8b530c6ea9f0dd3d1d0b61c1948c25d2
SHA2560c0a66505093b6a4bb3475f716bd3d9552095776f6a124709c13b3f9552c7d99
SHA512f4bf3398f50fdd3ab7e3f02c1f940b4c8b5650ed7af16c626ccd1b934053ba73a35f96da03b349c1eb614bb23e0bc6b5cc58b07b7553a5c93c6d23124f324a33