Task
task1
Task
task2
General
-
Target
0024324486a88ace4c745f14d85d394f080672271ec86758ddd94b390ca55e83
-
Sample
190508-f3yc47ff5n
-
SHA256
0024324486a88ace4c745f14d85d394f080672271ec86758ddd94b390ca55e83
Score
N/A
Malware Config
Signatures
-
suspicious_EnumeratesProcesses
-
suspicious_WriteProcessMemory 1 TTPs 1 IoCs
description pid PID 904 wrote to memory of 1368 1368 -
suspicious_EnumeratesProcesses
-
suspicious_RenamesItself
-
suspicious_EnumeratesProcesses
-
suspicious_WriteProcessMemory 1 TTPs 1 IoCs
description pid PID 3784 wrote to memory of 3824 3824 -
suspicious_EnumeratesProcesses
-
suspicious_WriteProcessMemory 1 TTPs 1 IoCs
description pid PID 424 wrote to memory of 244 244 -
Drops file in system dir 1 IoCs
description C:\Windows\TEMP\Switches.xml -
suspicious_WriteProcessMemory 1 TTPs 1 IoCs
description pid PID 244 wrote to memory of 2052 2052