Overview

overview

3

Static

static

76c2f38ab9...8d.exe

windows7-x64

3

76c2f38ab9...8d.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    153s
  • max time network
    188s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05-12-2022 19:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    76c2f38ab941d85f31437f973972bc610b6cc81e1e86bb4910f9e300debd568d.exe

  • Size

    60KB

  • MD5

    c6a2793dd003282be3193507b3edd54c

  • SHA1

    06be812819c0327e765902368c35ad116c6780e2

  • SHA256

    76c2f38ab941d85f31437f973972bc610b6cc81e1e86bb4910f9e300debd568d

  • SHA512

    130ae4e7f5af552051d0e1ae5a62eb55bb0af938f8b19fb893ab458fef80ffd17ef9f21267dafd7370c4dfcd33280e36dd4cc06433cc34a0d6c523dcd6042ffa

  • SSDEEP

    768:q/gA8w9zHnxfVjHovQ/o/THkbAqs3OfKDHGlHRJ6Wd:q/jHnx9jH2oQ+RJ6Wd

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\76c2f38ab941d85f31437f973972bc610b6cc81e1e86bb4910f9e300debd568d.exe
    "C:\Users\Admin\AppData\Local\Temp\76c2f38ab941d85f31437f973972bc610b6cc81e1e86bb4910f9e300debd568d.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3208
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 3208 -s 476
      2⤵
      • Program crash
      PID:3640
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 3208 -ip 3208
    1⤵
      PID:3500

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads