Overview

overview

3

Static

static

e294dcdf80...e9.exe

windows7-x64

3

e294dcdf80...e9.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    276s
  • max time network
    342s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/11/2022, 13:49

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    e294dcdf8080fa78e49ef97675d8085cf2b664b3b52a652cfdd0b0bb2b98dae9.exe

  • Size

    78KB

  • MD5

    a7a1f899921e4a321b94d772d09235b1

  • SHA1

    f0c2e8f560525c45cadcd4a5fa37982eb96476f8

  • SHA256

    e294dcdf8080fa78e49ef97675d8085cf2b664b3b52a652cfdd0b0bb2b98dae9

  • SHA512

    6b2a28b2ef08237c010191fec6bbd8da48baeede9272f2256029bbde32fd844e217973dcd9a9a87f3175c9fcc800047a02d46240199afc3bbac0d2bc1a58ebce

  • SSDEEP

    1536:ri3tF3382tp7nc7cjM6tFGerQTpEIM8Ht/dy28JAaNHN:u373s2FjPZEMIe28aaN

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e294dcdf8080fa78e49ef97675d8085cf2b664b3b52a652cfdd0b0bb2b98dae9.exe
    "C:\Users\Admin\AppData\Local\Temp\e294dcdf8080fa78e49ef97675d8085cf2b664b3b52a652cfdd0b0bb2b98dae9.exe"
    1⤵
      PID:4916
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4916 -s 224
        2⤵
        • Program crash
        PID:5040
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 4916 -ip 4916
      1⤵
        PID:3720

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/4916-132-0x0000000000400000-0x000000000043B000-memory.dmp

              Filesize

              236KB

              Download