Overview

overview

10

Static

static

d1a6a2e7f4...f3.exe

windows7-x64

10

d1a6a2e7f4...f3.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-10-2022 00:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d1a6a2e7f45a1a251da30f526d70dc5a5e35269b02bc5800f4f50c9a5676d9f3.exe

  • Size

    113KB

  • MD5

    65fd95d410dd1936feb18e4e46519308

  • SHA1

    91f51084588cfa5a342ee63e74ab9e2dcb72f4cf

  • SHA256

    d1a6a2e7f45a1a251da30f526d70dc5a5e35269b02bc5800f4f50c9a5676d9f3

  • SHA512

    705e8c36a1ce4173ae4c530effb9ceb8d807aee50dcb5d4a6c390f81aea45bef20b2974e7caae008d21089db3362946241b6332a6529e9367953f7cd62a929af

  • SSDEEP

    3072:p/oEUOHbsU3NRwlrDsVwdGiWrBPTnSXijrM:iEUO7vNOlvsVFlrnSyr

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d1a6a2e7f45a1a251da30f526d70dc5a5e35269b02bc5800f4f50c9a5676d9f3.exe
    "C:\Users\Admin\AppData\Local\Temp\d1a6a2e7f45a1a251da30f526d70dc5a5e35269b02bc5800f4f50c9a5676d9f3.exe"
    1⤵
      PID:1756
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1756 -s 432
        2⤵
        • Program crash
        PID:376
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1756 -s 440
        2⤵
        • Program crash
        PID:4280
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1756 -ip 1756
      1⤵
        PID:2228
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 1756 -ip 1756
        1⤵
          PID:1988

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads