Overview

overview

9

Static

static

259a930eea...80.exe

windows7-x64

9

259a930eea...80.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    190s
  • max time network
    199s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-11-2022 00:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780.exe

  • Size

    271KB

  • MD5

    301ce90c2d6ddbae41624ff04fc015e7

  • SHA1

    076fbcbbb2d82a052abfff2c1a3587e1534c5734

  • SHA256

    259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780

  • SHA512

    ec19b87be4b4e36efb58a179bd2b56096baabf698f435a5365eabdcc4754b9af2999fc68ef1cf0f94d30b7eeec4363f6bccf4085fb86adf76b78ca1499165a03

  • SSDEEP

    3072:ONQKJ8iNgYHaBCxaBlHAqHTv79rbcZp9QHi3eSLeDsHH1zprvktL5:OyKJwYkCk7rYZp9QhG8s1zetL5

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780.exe
    "C:\Users\Admin\AppData\Local\Temp\259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780.exe"
    1⤵
      PID:5116
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 5116 -s 472
        2⤵
        • Program crash
        PID:1896
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 376 -p 5116 -ip 5116
      1⤵
        PID:204

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/5116-132-0x0000000003AC0000-0x0000000003AD9000-memory.dmp
        Filesize

        100KB

        Download