Overview

overview

7

Static

static

2014_11inf...44.exe

windows7-x64

7

2014_11inf...44.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    153s
  • max time network
    161s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24-11-2022 12:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2014_11informationen_finanzgruppe_000070002.000038622.771714407-0044.exe

  • Size

    279KB

  • MD5

    abd77fef06032bb87aef714807bb2412

  • SHA1

    6d30182805ad1f067a59e393d056d2510877efcf

  • SHA256

    4540c3df2c3e1d87dac8dfc1c23b69a2c4aafd286ab9368cf7a1f335287ebeea

  • SHA512

    1f9fa4cf96a9133c8ab85696049da3bdb96733c6abd831865f3d7a15732709c86ab1e22db18550140a494a68b7eac9d52f2904bd33373420f9f7b283a79a3d89

  • SSDEEP

    6144:OnosW1EBUJk5RUJIQ6CtCyuP5/M/2goLlUZCXF+z7V:Ommm6fEO1LxCR

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2014_11informationen_finanzgruppe_000070002.000038622.771714407-0044.exe
    "C:\Users\Admin\AppData\Local\Temp\2014_11informationen_finanzgruppe_000070002.000038622.771714407-0044.exe"
    1⤵
      PID:2180
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2180 -s 524
        2⤵
        • Program crash
        PID:836
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 468 -p 2180 -ip 2180
      1⤵
        PID:2060

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads