6d8fc5485484ff3a0efee3b5961dd07882f7ab55b472b5884a0a5199ca26f68e

Analysis

max time kernel
117s
max time network
125s
platform
windows7_x64
resource
win7-20240611-en
resource tags

arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
submitted
01-07-2024 22:14

Target

StrangeOstrumV2.exe
Size

356KB
MD5

d16418fbada8f2a6f41b58b0666c2bda
SHA1

918047757fafd633f111fc9c47b90e5611341aab
SHA256

6d8fc5485484ff3a0efee3b5961dd07882f7ab55b472b5884a0a5199ca26f68e
SHA512

0bc4daeb51b6596e248e861b3c293a0d58ffeb46746dd16db42c337fb3b415648d79975af298ea0043393f0063ff43b938ab6097690c756723ce26ef04725fd1
SSDEEP

6144:XYLVGAk69fIESPUSyvC3WvwKP2XYvy07e1hQRpsJQlGNc8NJRxx+G8WM1ofwipTs:XrAk69fNSGpMYP7uh2sJQlGNc8NJRxxE

Score

7^/10

Loads dropped DLL 1 IoCs

Processes:

StrangeOstrumV2.exe

pid process

2324 StrangeOstrumV2.exe

pid	process
2324	StrangeOstrumV2.exe

C:\Users\Admin\AppData\Local\Temp\StrangeOstrumV2.exe
"C:\Users\Admin\AppData\Local\Temp\StrangeOstrumV2.exe"
1⤵
- Loads dropped DLL
PID:2324

\Users\Admin\AppData\Roaming\d3d9.dll
Filesize
416KB

MD5
d922ce4f3346515ca2b68e2087968b2f

SHA1
795d03f4ea0f6d9ea34e54d6bfa89299c6d667ec

SHA256
4bcc0d0119071ae3dcd6377680f762e631591f9dc5ea45a68ad943a48b1f6d1b

SHA512
95fdd75a779422174685c91d9782d9d3607d2f7638fcb94a2a19399317d18c8bbee10cb71738347f55ec87a4b2b705dfbec995182e6f149c28bb76dba0a1c566

Download Submit
memory/2324-0-0x0000000074D6E000-0x0000000074D6F000-memory.dmp

Filesize
4KB

Download
memory/2324-1-0x0000000000B60000-0x0000000000BC2000-memory.dmp

Filesize
392KB

Download
memory/2324-2-0x0000000000210000-0x0000000000216000-memory.dmp

Filesize
24KB

Download
memory/2324-7-0x00000000772F0000-0x00000000773B1000-memory.dmp

Filesize
772KB

Download
memory/2324-8-0x0000000074D60000-0x000000007544E000-memory.dmp

Filesize
6.9MB

Download