Overview

overview

8

Static

static

5cf3124431...00.exe

windows7-x64

8

5cf3124431...00.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    91s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-11-2022 19:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5cf3124431d3fdad46c21908953cf5b97db7c088621efc5493e698c67a253d00.exe

  • Size

    73KB

  • MD5

    563b79cee8188b4a7ab5a6d085f3a8c8

  • SHA1

    5092692b9201bc95dbadbc75f2a5613d444de5ea

  • SHA256

    5cf3124431d3fdad46c21908953cf5b97db7c088621efc5493e698c67a253d00

  • SHA512

    18b6d5fc898ae6b7fca89ee68933788781c0592092530e9baf64989d38cf09df15647cbd12e4ca106b7150df9ee13e73a90c10753c6c01ef6d6e007bfe84d703

  • SSDEEP

    768:rRpVpeRNuSJ7NWfZFfaLXO169q5VvHZ3m11aepXl5TRTbj37r49JsFNltX1Qb:rRt60+c/iLe16AFHZL65TRHL7r+M1Qb

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5cf3124431d3fdad46c21908953cf5b97db7c088621efc5493e698c67a253d00.exe
    "C:\Users\Admin\AppData\Local\Temp\5cf3124431d3fdad46c21908953cf5b97db7c088621efc5493e698c67a253d00.exe"
    1⤵
      PID:5060
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 5060 -s 284
        2⤵
        • Program crash
        PID:2976
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 5060 -ip 5060
      1⤵
        PID:2708

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/5060-132-0x0000000000400000-0x0000000000416000-memory.dmp
        Filesize

        88KB

        Download
      • memory/5060-133-0x0000000000400000-0x0000000000416000-memory.dmp
        Filesize

        88KB

        Download