Overview

overview

10

Static

static

10

2036-55-0x...ry.exe

windows7-x64

1

2036-55-0x...ry.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    90s
  • max time network
    105s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/10/2022, 13:12

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2036-55-0x0000000000150000-0x00000000001B9000-memory.exe

  • Size

    420KB

  • MD5

    05bec687de4cb29ff78d448343cd0d9d

  • SHA1

    287700db6e84e4072721b4821d072ba9034b0220

  • SHA256

    9c093202dde899d6de97c47bc4454ef84a9452335178598f7ea562000fe7a994

  • SHA512

    b578d511c8dcc5acadbab8738d2de51f2c87c3b0f1e33bf8a812cfa1293951cb9989ac8ea04cda30990a214d019cd6ef53032c8cbe86ce301a03b8f41c5532ef

  • SSDEEP

    6144:Un6WmQ1lFNybrqI06zg7wDdrpiedyf1KvBW/bvYDnp/1OBM:ZWmQ1jNE106ccbiedi4vBW/bgDK2

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2036-55-0x0000000000150000-0x00000000001B9000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\2036-55-0x0000000000150000-0x00000000001B9000-memory.exe"
    1⤵
      PID:4732
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4732 -s 216
        2⤵
        • Program crash
        PID:4072
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4732 -ip 4732
      1⤵
        PID:2108

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads