Analysis
-
max time kernel
139s -
max time network
157s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
29/10/2022, 21:46
General
-
Target
f07100e28b74fef8ec2fa59200c1da8f89baf6da446284416f9282a28b21ce30.exe
-
Size
1000KB
-
MD5
848c0e30681ed91412a64ceb1a8bd5a6
-
SHA1
07c86a54188112f0f6341f4abbb1d9c2670f0fc8
-
SHA256
f07100e28b74fef8ec2fa59200c1da8f89baf6da446284416f9282a28b21ce30
-
SHA512
050e9b89f0c73964c7e7bd699b3ce60b0f2c40b2f1ceb89767520eaf13103205e63aa30056ba9e6155894d6060b1a341a9f1a45fa6f27000273a2b8686748a47
-
SSDEEP
24576:tUk36eBLC3fIyG/ESoAclIdpv8s5c3/0dPM:tUw7BLC3fIy6X8s5cPOPM
Score
3/10
Malware Config
Signatures
-
Program crash 3 IoCs
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\f07100e28b74fef8ec2fa59200c1da8f89baf6da446284416f9282a28b21ce30.exe"C:\Users\Admin\AppData\Local\Temp\f07100e28b74fef8ec2fa59200c1da8f89baf6da446284416f9282a28b21ce30.exe"1⤵
- Suspicious use of SetWindowsHookEx
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4788 -s 4602⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4788 -s 4642⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4788 -s 4802⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 4788 -ip 47881⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 4788 -ip 47881⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 4788 -ip 47881⤵