Overview

overview

7

Static

static

30b71dabe4...4c.exe

windows7-x64

7

30b71dabe4...4c.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/10/2022, 02:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    30b71dabe47603f2ceacb349420bc413ebc8f5e4e24315ce0a053f8a77f6a34c.exe

  • Size

    49KB

  • MD5

    7b7c3a4c2f92ad6941501f872a5f2170

  • SHA1

    227bee106a163a2c9b24f2426299a15c5e5c8414

  • SHA256

    30b71dabe47603f2ceacb349420bc413ebc8f5e4e24315ce0a053f8a77f6a34c

  • SHA512

    74b3f3a5def23523170d8993ee929c216add733319f174b8c4f43e28cc2306638dc72d4d792598f7ff4df423a49a118fecce4632001365874860a58045f5baab

  • SSDEEP

    768:0bA5Md/TWXMqTvviaqWi2Pbm+Oyac/7k:085MdCXMqTvv/jmPA

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\30b71dabe47603f2ceacb349420bc413ebc8f5e4e24315ce0a053f8a77f6a34c.exe
    "C:\Users\Admin\AppData\Local\Temp\30b71dabe47603f2ceacb349420bc413ebc8f5e4e24315ce0a053f8a77f6a34c.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1176
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 1176 -s 660
      2⤵
      • Program crash
      PID:1932
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 1176 -ip 1176
    1⤵
      PID:1688

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads