Analysis
-
max time kernel
153s -
max time network
164s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
06-12-2022 08:13
General
-
Target
c331c9e57e7cb51e0a9eed6a4cfc9a710ef4abe84e565ffbcf29a59e8a27b681.exe
-
Size
821KB
-
MD5
56ded25d9ceeb1f334b22b493a77e10c
-
SHA1
4a1ee6d3a624ae6a3035053c42a7637d48d6a6f8
-
SHA256
c331c9e57e7cb51e0a9eed6a4cfc9a710ef4abe84e565ffbcf29a59e8a27b681
-
SHA512
ef7ced5a2824af0625b147c3ae0694e87901e89baa91424e6aa4ef749fdc5338bb5770ba426204805e3ef0c8103d5b4e0db6ac955f17174d0d26387dcebedc5f
-
SSDEEP
24576:Xk6o2w1nen4G4n7k7vCRvNpAtjp1Tn52TMx6:Xro2wde4H7kDC5NpAtj31x
Score
8/10
Malware Config
Signatures
-
UPX packed file 3 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Program crash 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\c331c9e57e7cb51e0a9eed6a4cfc9a710ef4abe84e565ffbcf29a59e8a27b681.exe"C:\Users\Admin\AppData\Local\Temp\c331c9e57e7cb51e0a9eed6a4cfc9a710ef4abe84e565ffbcf29a59e8a27b681.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 5080 -s 6962⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 5080 -s 6642⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 5080 -ip 50801⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 540 -p 5080 -ip 50801⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
2.3MB
-
Filesize
2.3MB
-
Filesize
2.3MB