Overview

overview

5

Static

static

c21099596d...bf.exe

windows7-x64

5

c21099596d...bf.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/12/2022, 07:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c21099596d9485ae2739ebca04d8a93e90a4ac33b5fbda95cd1e58a543ac21bf.exe

  • Size

    107KB

  • MD5

    9107d779989e4d98f7649a2a193d87cc

  • SHA1

    92bc3da7f3e657c078754136afc4a4a3f443d0ad

  • SHA256

    c21099596d9485ae2739ebca04d8a93e90a4ac33b5fbda95cd1e58a543ac21bf

  • SHA512

    d7ff1b30976e1ba8d4cfd6eab378f9670864e95da218bb413fd08187de1a7da296d15ababc84e0e7e494bac4c5a6f17359132ff68014d87e83974d3bf593543d

  • SSDEEP

    1536:U9vAHxK9lyX4r26q3tkf8mPZePKKTsvkBqJnq2nKHk5m2uqFCj:UOQ9lb7q3SfwPKK484JqQik5NuqFe

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c21099596d9485ae2739ebca04d8a93e90a4ac33b5fbda95cd1e58a543ac21bf.exe
    "C:\Users\Admin\AppData\Local\Temp\c21099596d9485ae2739ebca04d8a93e90a4ac33b5fbda95cd1e58a543ac21bf.exe"
    1⤵
      PID:4648
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4648 -s 312
        2⤵
        • Program crash
        PID:4180
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 4648 -ip 4648
      1⤵
        PID:2008

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/4648-132-0x0000000000400000-0x000000000042B000-memory.dmp

        Filesize

        172KB

        Download