Overview

overview

8

Static

static

3aa3a9ea48...b0.exe

windows7-x64

8

3aa3a9ea48...b0.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    40s
  • max time network
    58s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28-10-2022 22:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3aa3a9ea48610fc549168e531120d975ce2ccfb76bc5d9df508badbd4b5240b0.exe

  • Size

    43KB

  • MD5

    088cf34356cc5d4a5d65641f9b783660

  • SHA1

    771910265a4f91542bafcd16b3b010cb7e95572c

  • SHA256

    3aa3a9ea48610fc549168e531120d975ce2ccfb76bc5d9df508badbd4b5240b0

  • SHA512

    8fc9c785d1ee17ef276461a8e6b49ad61aed3e8c405852a259d5f01db65a4bc9710550dce1b2ccc00d6b9f96944160c2936bf7b844b952af49995454eb445def

  • SSDEEP

    768:xSPKF8HpAbPSmOcfI3rG9VTvf2mh5R1v6HVjHzsqvtq1hlVx1peBN7+TkiHCCjP:1bVT+Ymp/2h8BGHCCrk

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3aa3a9ea48610fc549168e531120d975ce2ccfb76bc5d9df508badbd4b5240b0.exe
    "C:\Users\Admin\AppData\Local\Temp\3aa3a9ea48610fc549168e531120d975ce2ccfb76bc5d9df508badbd4b5240b0.exe"
    1⤵
      PID:3628
      • C:\Users\Admin\AppData\Local\Temp\system32.exe
        "C:\Users\Admin\AppData\Local\Temp\system32.exe"
        2⤵
          PID:4008
          • C:\Windows\SysWOW64\WerFault.exe
            C:\Windows\SysWOW64\WerFault.exe -u -p 4008 -s 448
            3⤵
            • Program crash
            PID:32
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 472 -p 4008 -ip 4008
        1⤵
          PID:1912

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\system32.exe
          Filesize

          36KB

          MD5

          f03c61baa4d202ef49ba5312d2b09afe

          SHA1

          b7fb3458617973c91d7ced5a1e0a37cffd7e3897

          SHA256

          b02cfa3553930a4ce907ece971cb3dba94c02d0ae2408819dec72cbf7f5600fd

          SHA512

          b4b23accd89a6a750b2a49015d871e33935997a90316379f47c629c4b0ad3c00e97982f38d859377a78b2ae06e20b07d4079a6712c65bcb1d63ae83c61fb76e8

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\system32.exe
          Filesize

          26KB

          MD5

          93415ff6a97c29f77b0f24c13c4f9b4b

          SHA1

          ac80075384b25275d138d23b2dcc876e4083caaf

          SHA256

          96fd77b936af9a845e4c3507e5900b19e898567d8aa5f12746031de0c8a031e1

          SHA512

          13f74a4eaa2a3ae63bdf45942026c7967c2c0dffb31ef134a1cfa3d3ae3bee33d99447300e7f515dfd551d0b2e291a4c34111e091ba5f65be381f13fa3f7c31c

          Download Submit

        • memory/3628-132-0x0000000074A20000-0x0000000074FD1000-memory.dmp

          Filesize

          5.7MB

          Download

        • memory/3628-136-0x0000000074A20000-0x0000000074FD1000-memory.dmp

          Filesize

          5.7MB

          Download

        • memory/4008-137-0x0000000074A20000-0x0000000074FD1000-memory.dmp

          Filesize

          5.7MB

          Download