Overview

overview

3

Static

static

70c82c1f3b...d9.exe

windows7-x64

3

70c82c1f3b...d9.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    90s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/10/2022, 18:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe

  • Size

    245KB

  • MD5

    01751f7f09ef042a180144b6761a35d6

  • SHA1

    2f2222293af134db74fc0a356c14f6818f53f84b

  • SHA256

    70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9

  • SHA512

    b8e4f690e273e0c38f4d1d098ef275dc2cfa1676261ae15b5e4376a565a537f3245081b89c2dfc777bdfbbcd67c995387ad454b2445d7a6108040e55c5dfae06

  • SSDEEP

    3072:TBucIy5lEaANR4Cpw5sANR4Cpw5RCpw5RCpw5sANR4Cpw5H:TBp/5lLy1w5sy1w5Kw5Kw5sy1w5H

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe
    "C:\Users\Admin\AppData\Local\Temp\70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe"
    1⤵
      PID:1260
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1260 -s 300
        2⤵
        • Program crash
        PID:2164
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 464 -p 1260 -ip 1260
      1⤵
        PID:4988

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1260-133-0x0000000002090000-0x00000000020A1000-memory.dmp

        Filesize

        68KB

        Download

      • memory/1260-132-0x0000000000400000-0x000000000040536C-memory.dmp

        Filesize

        20KB

        Download