Overview

overview

3

Static

static

1c8f2a33a9...2d.exe

windows7-x64

1

1c8f2a33a9...2d.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    112s
  • max time network
    116s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/11/2022, 14:36

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    1c8f2a33a9fdbdcbcede32b78f646c3d9db32568ae8c6a4a538ac765aa43632d.exe

  • Size

    39KB

  • MD5

    0a1777487086ddb54785faf27c5370ad

  • SHA1

    eefda98ffbee66e36d271c827d644d9e4ecdedaf

  • SHA256

    1c8f2a33a9fdbdcbcede32b78f646c3d9db32568ae8c6a4a538ac765aa43632d

  • SHA512

    393629441ce5bff3eb25600c22a6431beb58a793e2d3c50969269cc341bcb41773af7490160b5c18ad00cab0e52f095fd63587949c7a59fd24ba0e9d2365e164

  • SSDEEP

    768:vYBymwvfKtmp9QqN0M+MbVWdpNui+l7Hjn+bUuJ0C5y:gonMcQqN0mRWUi3UC

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1c8f2a33a9fdbdcbcede32b78f646c3d9db32568ae8c6a4a538ac765aa43632d.exe
    "C:\Users\Admin\AppData\Local\Temp\1c8f2a33a9fdbdcbcede32b78f646c3d9db32568ae8c6a4a538ac765aa43632d.exe"
    1⤵
      PID:4972
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4972 -s 252
        2⤵
        • Program crash
        PID:4312
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4972 -s 268
        2⤵
        • Program crash
        PID:4368
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 4972 -ip 4972
      1⤵
        PID:1420
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 464 -p 4972 -ip 4972
        1⤵
          PID:2664

        Network

              MITRE ATT&CK Matrix

              Replay Monitor

              Loading Replay Monitor...

              Downloads