Overview

overview

3

Static

static

857fa3fbf0...6f.exe

windows7-x64

3

857fa3fbf0...6f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    91s
  • max time network
    129s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12-10-2022 14:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    857fa3fbf0fba791377183c24e0e45bfb835238613f90df5c12a8b9f7d3c6f6f.exe

  • Size

    224KB

  • MD5

    651f100ce1da2b319f215c1cf0e17e30

  • SHA1

    7f3b15e2296a5c0cbe9c1e663b6847b382f32082

  • SHA256

    857fa3fbf0fba791377183c24e0e45bfb835238613f90df5c12a8b9f7d3c6f6f

  • SHA512

    4eaa8ca883037711811ce62e3eb3694f23ef22a780d347d1bee02672bcb0b856f2ed99e823e25ae942d49c75c92f8f19e08a4c0048a37f94f8c676377cc8c92c

  • SSDEEP

    3072:28GW8bsZ5qbLj1w+A3W66NYa7CgPCmHV1BdHDYqzUnQUoulDe:2u8Uqvj1BA76HCgPCmHV1BdHDYoUZI

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\857fa3fbf0fba791377183c24e0e45bfb835238613f90df5c12a8b9f7d3c6f6f.exe
    "C:\Users\Admin\AppData\Local\Temp\857fa3fbf0fba791377183c24e0e45bfb835238613f90df5c12a8b9f7d3c6f6f.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4792
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 4792 -s 464
      2⤵
      • Program crash
      PID:3932
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 4792 -ip 4792
    1⤵
      PID:1480

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads