Overview

overview

7

Static

static

45002b67dd...84.exe

windows7-x64

7

45002b67dd...84.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    91s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/10/2022, 06:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    45002b67dda83803f3e23f2fc219504386ea4a87bcd2bdeb570089c1c45aa584.exe

  • Size

    64KB

  • MD5

    60ab750d1003fcd32a28efa7c5e56d00

  • SHA1

    b31099a84f88dcbb4971296b6486e27e2b3d8346

  • SHA256

    45002b67dda83803f3e23f2fc219504386ea4a87bcd2bdeb570089c1c45aa584

  • SHA512

    a4792dfcc1a2a84a3d584876bc37fe98637563d58da45fc032fe89694db728973c03fe1dbe2a28391a2155a6d558f9fa131425a44f209c60606f285dd204b0ea

  • SSDEEP

    768:B02HCKI115NZQHegeH22Au7gOKktdptJf1IHI8ANO26n6m+Xqh/shGXo:B02iE+/vSHBT26n6Lq/xX

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\45002b67dda83803f3e23f2fc219504386ea4a87bcd2bdeb570089c1c45aa584.exe
    "C:\Users\Admin\AppData\Local\Temp\45002b67dda83803f3e23f2fc219504386ea4a87bcd2bdeb570089c1c45aa584.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3292
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 3292 -s 660
      2⤵
      • Program crash
      PID:1428
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3292 -ip 3292
    1⤵
      PID:4204

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads