Overview

overview

3

Static

static

b1477ca086...96.exe

windows7-x64

3

b1477ca086...96.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/12/2022, 19:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b1477ca0867a34c1fde40d6e41c0b54b046a47f115c47f1bf03bcd7349769b96.exe

  • Size

    216KB

  • MD5

    059b5f957b32840d5b3a6cb12ade8031

  • SHA1

    76cea0a009dfc8f81a5e590ba2c9ba6b0d809f30

  • SHA256

    b1477ca0867a34c1fde40d6e41c0b54b046a47f115c47f1bf03bcd7349769b96

  • SHA512

    ccf9e7a2ede8326586939f0987211994a4f599f2094bd412ca50b926e9a6fad4c037bdb870566802abfff5167b2266d95fb9b501781953a0dd04c60df24cbf31

  • SSDEEP

    6144:h+ri+ewH89guKBQgfRpz+UH6/CqrxIwaYfTYiItK:COw8guKG81+UH6qSxe4TYE

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b1477ca0867a34c1fde40d6e41c0b54b046a47f115c47f1bf03bcd7349769b96.exe
    "C:\Users\Admin\AppData\Local\Temp\b1477ca0867a34c1fde40d6e41c0b54b046a47f115c47f1bf03bcd7349769b96.exe"
    1⤵
      PID:4588
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4588 -s 324
        2⤵
        • Program crash
        PID:4548
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 4588 -ip 4588
      1⤵
        PID:4900

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/4588-132-0x0000000000400000-0x0000000000430000-memory.dmp

              Filesize

              192KB

              Download

            • memory/4588-133-0x0000000000400000-0x0000000000430000-memory.dmp

              Filesize

              192KB

              Download

            • memory/4588-134-0x0000000000430000-0x0000000000434000-memory.dmp

              Filesize

              16KB

              Download

            • memory/4588-135-0x0000000002060000-0x0000000002099000-memory.dmp

              Filesize

              228KB

              Download

            • memory/4588-136-0x0000000000400000-0x0000000000430000-memory.dmp

              Filesize

              192KB

              Download

            • memory/4588-137-0x0000000002060000-0x0000000002099000-memory.dmp

              Filesize

              228KB

              Download

            • memory/4588-138-0x0000000000400000-0x0000000000430000-memory.dmp

              Filesize

              192KB

              Download

            • memory/4588-139-0x0000000002060000-0x0000000002099000-memory.dmp

              Filesize

              228KB

              Download