Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
27/01/2025, 20:52
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
PowerVerse.exe
Resource
win7-20240903-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
PowerVerse.exe
Resource
win10v2004-20241007-en
2 signatures
150 seconds
General
-
Target
PowerVerse.exe
-
Size
28KB
-
MD5
49b731e84a38056294fd0e483fc99b85
-
SHA1
b2c94378d4416a505eb88f5174a8dc01a7ffc548
-
SHA256
eda36519020d4c8bd126a8186aefc15afb84b08a709aee69a95c2753641ca646
-
SHA512
ca036dc10e0dd23b941fcc4efc1a27053f051697a889b1429e4c476ea990ab29dc6ba4bb317c822a0273459aca63092a8bfbc9d3f97b6de44175d096e7066dc0
-
SSDEEP
768:bEH4HId1sPYRquXM41v1UbpCPrUgm3HtJ:bEH4FPnGIMPgX3P
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 976 wrote to memory of 2228 976 PowerVerse.exe 32 PID 976 wrote to memory of 2228 976 PowerVerse.exe 32 PID 976 wrote to memory of 2228 976 PowerVerse.exe 32