Analysis
-
max time kernel
150s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
05/12/2022, 09:38
General
-
Target
a215e83d7a7787e087716cec28dfba91b510fb46af4532f94bd850ec356c8c23.exe
-
Size
272KB
-
MD5
968b19ffc23d4458e0e2bb12c1d5a63a
-
SHA1
a5d37a2c4e236baceebb88532d8bfcd3faeba804
-
SHA256
a215e83d7a7787e087716cec28dfba91b510fb46af4532f94bd850ec356c8c23
-
SHA512
af19449139311434d5d241d5547aef078a0521350a79d4a78c17ec093ae6a05c8c8fd5a4da75e305a08b6c71a9d755bc7ac8db78e3f74a5583967c67409807ac
-
SSDEEP
6144:BLardlQxchRdjLmtrBuMrdekUH63u+X5sc57m:QrYxGLTuPL5a
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\a215e83d7a7787e087716cec28dfba91b510fb46af4532f94bd850ec356c8c23.exe"C:\Users\Admin\AppData\Local\Temp\a215e83d7a7787e087716cec28dfba91b510fb46af4532f94bd850ec356c8c23.exe"1⤵
- Suspicious use of SetWindowsHookEx
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2416 -s 4642⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2416 -ip 24161⤵