Analysis
-
max time kernel
37s -
max time network
33s -
platform
windows7_x64 -
resource
win7-20221111-en -
resource tags
-
submitted
23-11-2022 11:20
General
-
Target
daad702bcedcb79a04cd61d119e243d5d59783e51162210c89965c106d025aad.exe
-
Size
56KB
-
MD5
39b6e380a215bbd0a8fc0a7ad32c0579
-
SHA1
3e49f87e7b210d6586462ad80dfbcb844b13926b
-
SHA256
daad702bcedcb79a04cd61d119e243d5d59783e51162210c89965c106d025aad
-
SHA512
2ab55ea47d13a032fd254fd174ebcea6934dbb34970b838c67d5618edefd582c58a3917e7e2e6643f43e0e21481afad1d9d6b184fe55360146026db639a6d5dc
-
SSDEEP
1536:coL14x0XszlCH6I/aoQOVYYIDCwWbEo9PU7TGU5baqgIB:6x1zwioJ0xo9W3laqgIB
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
Suspicious use of WriteProcessMemory 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\daad702bcedcb79a04cd61d119e243d5d59783e51162210c89965c106d025aad.exe"C:\Users\Admin\AppData\Local\Temp\daad702bcedcb79a04cd61d119e243d5d59783e51162210c89965c106d025aad.exe"1⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1956 -s 362⤵
- Program crash
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1484-54-0x0000000000000000-mapping.dmp