Overview

overview

3

Static

static

ddc17af07e...a4.exe

windows7-x64

3

ddc17af07e...a4.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    151s
  • max time network
    190s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-12-2022 08:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ddc17af07e04e69fd27d94825456728a80fbe83eec6a20a6b33b7faf24b5dfa4.exe

  • Size

    75KB

  • MD5

    481f16e71174e9d4eaa292145ade340a

  • SHA1

    a660b667f056ef1d1a91c8e76b4a1b466a42fd62

  • SHA256

    ddc17af07e04e69fd27d94825456728a80fbe83eec6a20a6b33b7faf24b5dfa4

  • SHA512

    32f58589bfea0cce4ae8e49a131aeec626a595df963bbdef9972ae4b1975e0accae3d97ca47db801e50dc285d606fed6ba5693e9b3da357396a94846adc06be2

  • SSDEEP

    1536:NIsYIFHRoXSeBi4JdGpgGhj+pq9W9dHu1oNiFv2w:6+pRoXvE47G2GlC9Bu1o6r

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ddc17af07e04e69fd27d94825456728a80fbe83eec6a20a6b33b7faf24b5dfa4.exe
    "C:\Users\Admin\AppData\Local\Temp\ddc17af07e04e69fd27d94825456728a80fbe83eec6a20a6b33b7faf24b5dfa4.exe"
    1⤵
      PID:1680
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1680 -s 260
        2⤵
        • Program crash
        PID:912
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1680 -s 304
        2⤵
        • Program crash
        PID:4800
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 1680 -ip 1680
      1⤵
        PID:3788
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 528 -p 1680 -ip 1680
        1⤵
          PID:2816

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads