Overview

overview

3

Static

static

d20dfccd5e...d1.exe

windows7-x64

1

d20dfccd5e...d1.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    111s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-11-2022 21:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d20dfccd5e62377ce00a2911a45950097acef3ea637a69c8f480977450ed7ed1.exe

  • Size

    13KB

  • MD5

    5884bf4050466f8917e1411046d514e1

  • SHA1

    8ae73ad26ea8ddd2f461f1f24ae8a85a409490c0

  • SHA256

    d20dfccd5e62377ce00a2911a45950097acef3ea637a69c8f480977450ed7ed1

  • SHA512

    e3ebbce692dd7109c4461da9b56ee6ce768de51154e504143eb26cc50f3b323ddb1c13eabc1aa1e185725000c7b26e78a74163f6c9647126f5cb47748fdcf2f5

  • SSDEEP

    384:c0RfnLXxhtftT7P3Fvg3XD7Hk8BR09LJSWq68dQW:c0RfnLBhVtVvmkwR/Hd

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d20dfccd5e62377ce00a2911a45950097acef3ea637a69c8f480977450ed7ed1.exe
    "C:\Users\Admin\AppData\Local\Temp\d20dfccd5e62377ce00a2911a45950097acef3ea637a69c8f480977450ed7ed1.exe"
    1⤵
      PID:3836
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3836 -s 376
        2⤵
        • Program crash
        PID:2960
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3836 -s 416
        2⤵
        • Program crash
        PID:5088
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 3836 -ip 3836
      1⤵
        PID:3192
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 524 -p 3836 -ip 3836
        1⤵
          PID:3260

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads