Overview

overview

4

Static

static

sguard_limit.exe

windows7-x64

1

sguard_limit.exe

windows10-2004-x64

1

sguard_limit.exe

windows7-x64

sguard_limit.exe

windows10-2004-x64

常见问�...�.docx

windows7-x64

4

常见问�...�.docx

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    16-10-2022 12:06

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: image=C:\Users\Admin\AppData\Local\Temp\sguard_limit.exe command="C:\Users\Admin\AppData\Local\Temp\sguard_limit.exe" wdir=C:\Users\Admin\AppData\Local\Temp Payload error: The %1 application cannot be run in Win32 mode.
Report Analysis Logs

General

  • Target

    sguard_limit.exe

  • Size

    22KB

  • MD5

    98a249a8bbf9e9f04fb82891a2821ae0

  • SHA1

    9f9017bc658a7e3966449a349f21c8118db1f6d1

  • SHA256

    1e3f1a92b1773bdaa74b06471ad3b0bcccbe9b585fdc738c083f769895bee067

  • SHA512

    73852472e3b1ec2ce7948b71474c53ade18f19a93a483080030cfca58b9b3de9ce91ce496210ece2278ce6acf02203af9dfb41d7dd92e39f88b499edc5dceb48

  • SSDEEP

    384:nH+1Xk9W1i1opGbx8xbJuY82FclB5N2qM:nehkW1iLx8xbc2uBj4

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\sguard_limit.exe
    "C:\Users\Admin\AppData\Local\Temp\sguard_limit.exe"
    1⤵
      PID:852

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads