Overview

overview

10

Static

static

52e13c80fd...1e.exe

windows7-x64

10

52e13c80fd...1e.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    91s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220414-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-07-2022 01:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    52e13c80fdbd1cae03d0c7121443a06433af173a12c370325df22e97f9afd81e.exe

  • Size

    325KB

  • MD5

    4638dcaef1732ca87b223ddf90ff4828

  • SHA1

    1a2303d4521505c7c3fcd54ca1882240c4fc72e6

  • SHA256

    52e13c80fdbd1cae03d0c7121443a06433af173a12c370325df22e97f9afd81e

  • SHA512

    db00ec5f08801ae14a135e0de47ac6161c29dd3946234dc43fe7a649edb6a05dc572a76b35fe363df9e954033381158dc16dc63a2ae682537a13526be2ef1f3e

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\52e13c80fdbd1cae03d0c7121443a06433af173a12c370325df22e97f9afd81e.exe
    "C:\Users\Admin\AppData\Local\Temp\52e13c80fdbd1cae03d0c7121443a06433af173a12c370325df22e97f9afd81e.exe"
    1⤵
      PID:2644
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2644 -s 400
        2⤵
        • Program crash
        PID:4416
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 204 -p 2644 -ip 2644
      1⤵
        PID:2052

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/2644-130-0x0000000002260000-0x000000000228F000-memory.dmp

        Filesize

        188KB

        Download