Overview

overview

6

Static

static

847096284f...c0.exe

windows7-x64

6

847096284f...c0.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    274s
  • max time network
    341s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-12-2022 10:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    847096284fc96f099c869ac263ff5a4a120a4f18637550290b0872be5a6eb3c0.exe

  • Size

    580KB

  • MD5

    17b6b1dc94ec08c204ab91ade5cf4367

  • SHA1

    a5df99f4a2f5d078df072d3c2cc3990b5bb7f23c

  • SHA256

    847096284fc96f099c869ac263ff5a4a120a4f18637550290b0872be5a6eb3c0

  • SHA512

    a46f382f38db43a394013328b25fa1f23c40caac7f32e419373777a1a0c15b56ddb8eddda08a9269dc2aa80f45910a8300350dcff5ec6880d8d83e6fb1bc804e

  • SSDEEP

    12288:HHiwsrR0ZSADvr3B65tDfIqWADbSYFQ7dzPwwKAFI+nSFtC:i2ZSevkT7IqWA/SiQ79PwwKAFIB

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\847096284fc96f099c869ac263ff5a4a120a4f18637550290b0872be5a6eb3c0.exe
    "C:\Users\Admin\AppData\Local\Temp\847096284fc96f099c869ac263ff5a4a120a4f18637550290b0872be5a6eb3c0.exe"
    1⤵
      PID:2580
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2580 -s 228
        2⤵
        • Program crash
        PID:440
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 2580 -ip 2580
      1⤵
        PID:1032
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 2580 -ip 2580
        1⤵
          PID:5080

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2580-132-0x0000000000400000-0x0000000000497000-memory.dmp

          Filesize

          604KB

          Download