Analysis
-
max time kernel
166s -
max time network
190s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
-
submitted
02/12/2022, 00:04
General
-
Target
159e3fda4a293d909184ebe161c9095256146218d10c5082403c88c859fa6691.exe
-
Size
136KB
-
MD5
2a2c5b01ef5a38221caf070c639a4610
-
SHA1
8da5de969ba6e751355b309646e683f57733a4c4
-
SHA256
159e3fda4a293d909184ebe161c9095256146218d10c5082403c88c859fa6691
-
SHA512
fc5e7d378acee502372806ee054189617b974c52ca086f3054c5320de64cc518464205b633c53330e63e44bb227bd01de6236d0e73eca2cc721b1f92e25e9590
-
SSDEEP
3072:xpxJovvXFwRBW1cQoj9MYuPCNtrK6tJTVUa370Fi:7u/d2QRYjfTVU40
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\159e3fda4a293d909184ebe161c9095256146218d10c5082403c88c859fa6691.exe"C:\Users\Admin\AppData\Local\Temp\159e3fda4a293d909184ebe161c9095256146218d10c5082403c88c859fa6691.exe"1⤵
- Suspicious use of SetWindowsHookEx
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4932 -s 4642⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4932 -ip 49321⤵