a5071bd3256623adb25821f3ed2a2033bf59ddc062f7ffde68d9c290100409d3

Analysis

max time kernel
55s
max time network
60s
platform
windows10-1703_x64
resource
win10-20220718-en
resource tags

arch:x64arch:x86image:win10-20220718-enlocale:en-usos:windows10-1703-x64system
submitted
18-07-2022 17:44

Target

mycanal checker 2022 july/jlchacha webmail bruter/MyCanal Bruter BY YASHVIR.exe
Size

3.2MB
MD5

58c3516440aeab7da16361f35a78519c
SHA1

7f0c62ba7e5eb0bf392b326925ab6e7b1ed6e5ee
SHA256

c4d9bf72ba45dab8bc98854079156b894f51c6edec305b11ecaef281342b446c
SHA512

dcd19ab823de8eb5ba8c902f64a5fd41665dbbf737b506af621a4677ca6ec6715bc42ec3169a5a655c086d706e510f25a4b3e38403118af93a46837c20ba608d

Score

7^/10

themida

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

Processes:

resource	yara_rule
behavioral2/memory/2148-127-0x0000000000930000-0x0000000001192000-memory.dmp	themida

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

420 2148 WerFault.exe MyCanal Bruter BY YASHVIR.exe

pid	pid_target	process	target process
420	2148	WerFault.exe	MyCanal Bruter BY YASHVIR.exe

C:\Users\Admin\AppData\Local\Temp\mycanal checker 2022 july\jlchacha webmail bruter\MyCanal Bruter BY YASHVIR.exe
"C:\Users\Admin\AppData\Local\Temp\mycanal checker 2022 july\jlchacha webmail bruter\MyCanal Bruter BY YASHVIR.exe"
1⤵
PID:2148

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 2148 -s 268
2⤵
- Program crash
PID:420

memory/2148-117-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-118-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-119-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-120-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-121-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-122-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-124-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-123-0x0000000077020000-0x00000000771AE000-memory.dmp

Filesize
1.6MB

Download
memory/2148-125-0x0000000000930000-0x0000000001192000-memory.dmp

Filesize
8.4MB

Download
memory/2148-126-0x0000000000930000-0x0000000001192000-memory.dmp

Filesize
8.4MB

Download
memory/2148-127-0x0000000000930000-0x0000000001192000-memory.dmp

Filesize
8.4MB

Download