Overview

overview

5

Static

static

c8cdae3ef5...e1.exe

windows7_x64

5

c8cdae3ef5...e1.exe

windows10-2004_x64

3

Analysis

  • max time kernel
    90s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    20-04-2022 15:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c8cdae3ef562a690983698c801fdd4173ad8d79fdd7a01ec30de07e18ec706e1.exe

  • Size

    332KB

  • MD5

    3cfb06ec70201cbdb3012291044b88c6

  • SHA1

    3b6db0c3b49ecc22e78e7ead5e4d1f9c6d51b6a7

  • SHA256

    c8cdae3ef562a690983698c801fdd4173ad8d79fdd7a01ec30de07e18ec706e1

  • SHA512

    d7b33f554bc465b5ed13f2c4640e6098d5c680cc89e5185cb9d00a13a0759c67856e94360f70273d4d7674536145cab62054fc4fae3acebda1b12251a76bd3b2

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c8cdae3ef562a690983698c801fdd4173ad8d79fdd7a01ec30de07e18ec706e1.exe
    "C:\Users\Admin\AppData\Local\Temp\c8cdae3ef562a690983698c801fdd4173ad8d79fdd7a01ec30de07e18ec706e1.exe"
    1⤵
      PID:4000
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4000 -s 568
        2⤵
        • Program crash
        PID:4044
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4000 -s 604
        2⤵
        • Program crash
        PID:2980
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 188 -p 4000 -ip 4000
      1⤵
        PID:4464
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 4000 -ip 4000
        1⤵
          PID:1612

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/4000-130-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-131-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-132-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-133-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-134-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-135-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-136-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-137-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-138-0x000000007FDF0000-0x000000007FE4C000-memory.dmp
          Filesize

          368KB

          Download
        • memory/4000-139-0x0000000000400000-0x0000000000461000-memory.dmp
          Filesize

          388KB

          Download