Overview

overview

10

Static

static

driver.sys.exe

windows11_x64

driver.sys.exe

windows10_x64

SplitBot.exe

windows11_x64

10

SplitBot.exe

windows10_x64

10

Analysis

  • max time kernel
    1s
  • max time network
    2s
  • platform
    windows10_x64
  • resource
    win10-en-20211014
  • submitted
    25-10-2021 22:54

Sharing

Copy URL
Twitter E-mail

Errors

Reason
Remote task has failed: platform exec: exit status 1: image=C:\Users\Admin\AppData\Local\Temp\driver.sys.exe command="C:\Users\Admin\AppData\Local\Temp\driver.sys.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: The %1 application cannot be run in Win32 mode.
Report Analysis Logs

General

  • Target

    driver.sys.exe

  • Size

    8KB

  • MD5

    19afd57d491ffa9437f934191aaab452

  • SHA1

    02bdd12ea02890b667e23defbc7fbb8a8eab73d0

  • SHA256

    ff9a7656d32450b73b24db00a36b25f6ac960ef9d70ad6ce0335bf4d821f89d6

  • SHA512

    596f55714aacccb31c35f7d0416550e62e91908da4795ed2534cd723dc700278a0c382f00cb46628c573eea5b886217695782f3a308db01bc7c06a8f6214e01e

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\driver.sys.exe
    "C:\Users\Admin\AppData\Local\Temp\driver.sys.exe"
    1⤵
      PID:2112

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads