Overview

overview

3

Static

static

FakeClient.exe

windows7-x64

1

FakeClient.exe

windows10-2004-x64

1

SECOPatcher.dll

windows7-x64

1

SECOPatcher.dll

windows10-2004-x64

1

SetACL.exe

windows7-x64

1

SetACL.exe

windows10-2004-x64

1

SppExtComObjHook.dll

windows7-x64

1

SppExtComObjHook.dll

windows10-2004-x64

1

WinDivert.dll

windows7-x64

1

WinDivert.dll

windows10-2004-x64

1

WinDivert64.exe

windows7-x64

WinDivert64.exe

windows10-2004-x64

cleanospp.exe

windows7-x64

1

cleanospp.exe

windows10-2004-x64

1

msvcr100.dll

windows7-x64

3

msvcr100.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    18s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    03-12-2022 09:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    FakeClient.exe

  • Size

    10KB

  • MD5

    6241a145a6bc3511e7690dcf107cefd8

  • SHA1

    3052b10e7356bbb71a0519d9c089ce5ae18d4b6c

  • SHA256

    2218293e4442deb06e398aa0357aef54df377b95e46b6ed79b48b65b666c9405

  • SHA512

    8826f64b587df90b7990aed548644bd76e14c95763fe0175901f6d72e05666372a1694013a92b8b6da7a643aabc43df0dbd1703117667cfed2955a19845c4b83

  • SSDEEP

    192:bFKnhMRmaT0Tg6PDKwZg7UVOUxPsUbWeJuanksAP:bFFsaT+gMDZgI44PB9ks

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\FakeClient.exe
    "C:\Users\Admin\AppData\Local\Temp\FakeClient.exe"
    1⤵
      PID:836

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads