0e6dc61eef774aaaf2688f2d1052089d0740c9e9d80cc9d877b1b6cb6b94a68c

Analysis

max time kernel
146s
max time network
154s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
29-01-2025 15:17

Target

apt/24.10.4.756/service_update.exe
Size

3.0MB
MD5

08bc7cc83e6e174acf48709698a85d8b
SHA1

0317283b7b1dd70f3c246f8922e03a54e6070e59
SHA256

585e99c2a0bc73a32feefdbb6f541cea1ccf7af7af6e9521f1fb6218be3a0c5b
SHA512

d6595f5071dd412baa3c16c96c1a3144c43cb310922a19ef5332d66cf61efee3acc896b96b0597b44d3ce8e431bd1fac02864f90687e7b333a5e745b09afb273
SSDEEP

49152:jbXv0J0EON2XvZ7I+Eg+ZLqQAqsYXvdC/J0hKYI:jngfWNg+ZSMGN

Score

1^/10

Suspicious use of WriteProcessMemory 2 IoCs

description	pid	Process	procid_target
PID 228 wrote to memory of 764	228	service_update.exe	77
PID 228 wrote to memory of 764	228	service_update.exe	77

C:\Users\Admin\AppData\Local\Temp\apt\24.10.4.756\service_update.exe
"C:\Users\Admin\AppData\Local\Temp\apt\24.10.4.756\service_update.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:228
- C:\Users\Admin\AppData\Local\Temp\apt\24.10.4.756\service_update.exe
  "C:\Users\Admin\AppData\Local\Temp\apt\24.10.4.756\service_update.exe" --statistics=https://api.browser.yandex.ru/installstats/send/dtype=stred/pid=457/cid=72992/path=extended_stat/vars=-action=service_unused,-brand_id=unknown,-error=UNKNOWN_COMMAND,-installer_type=service,-launched=false,-old_style=1,-old_ver=,-result=0,-stage=error,-ui=A9D7FE8E_EA6D_4D12_8489_2D3BAE24F9FD/*
  2⤵
  PID:764

C:\ProgramData\Yandex\YandexBrowser\service_update.log

Filesize
3KB

MD5
57ed5b5f4bec81a5e04358e24c63623d

SHA1
f371bfa73c15c1c118398fcfc907482da1c14e39

SHA256
590cd6a8eb22cdae6ea1ed6c8d707bac8c599956b638839b7e95fa1e219cbb0b

SHA512
9d60edd6fec84de25f636c095899ad756adaf2664cbf2ed2c471a53c3ea5f036273e1c23c0496924520716002757c96e97f8f0f220b0c5541945afcba657f4ef

Download Submit
C:\ProgramData\Yandex\YandexBrowser\service_update.log

Filesize
4KB

MD5
17f3e3266d7a5967a8832d2f33ee6762

SHA1
5bf2ade0983dee738f6183072d85e6ec7c45cdd7

SHA256
39594e5ff42db6a62abb8a831d75b4f9db50db7b8fe8bd53973f252879569d60

SHA512
6d80bc0a6a5a84c3fec4792018bbdc14232769710f7400f7440ee5d25e8af19758a07740b5076624b061f077359d5f5a269c82a1bd7f02e28b68140cafa94ae5

Download Submit
C:\ProgramData\Yandex\YandexBrowser\service_update.log

Filesize
2KB

MD5
8a8c2d5bb6fdb9c92b1ddc95da7d7a58

SHA1
32a2c82270da2302841de4bf055670bf1efc6255

SHA256
746dbae41e451b361ec60f4ab934947cb5648390fb00c13790e13720d8396a67

SHA512
2f91edfe18aa3c7ed6ffc6ebeda87be0deda9244f2ffda2e99f725297ba5c7b2603d45862ffca469410184a798f1e175589ac76294eefe672240305afc7db9d1

Download Submit