Overview

overview

6

Static

static

WindowsDef...rd.wim

windows7-x64

3

WindowsDef...rd.wim

windows10-1703-x64

6

WindowsDef...rd.wim

windows10-2004-x64

3

WindowsDef...rd.wim

android-10-x64

WindowsDef...rd.wim

android-11-x64

WindowsDef...rd.wim

android-9-x86

WindowsDef...rd.wim

macos-10.15-amd64

1

WindowsDef...rd.wim

debian-9-armhf

WindowsDef...rd.wim

debian-9-mips

WindowsDef...rd.wim

debian-9-mipsel

WindowsDef...rd.wim

ubuntu-18.04-amd64

Analysis

  • max time kernel
    0s
  • platform
    linux_amd64
  • resource
    ubuntu1804-amd64-en-20211208
  • resource tags

    arch:amd64arch:i386image:ubuntu1804-amd64-en-20211208kernel:4.15.0-161-genericlocale:en-usos:ubuntu-18.04-amd64system
  • submitted
    24/12/2022, 07:03

Sharing

Copy URL Twitter E-mail

Errors

Reason
Payload did not run: payload error: fork/exec /tmp/WindowsDefenderApplicationGuard.wim: exec format error
Report Analysis Logs

General

  • Target

    WindowsDefenderApplicationGuard.wim

  • Size

    30.5MB

  • MD5

    e069ad898b074b8cf98256516aed064c

  • SHA1

    a040057d2edf90ebb14b90a52b92eeb5b5d1faa1

  • SHA256

    d215f9c3834c64134eb60d6b64ae143409e76570d5d9a4f3488a1e8aba9ab8b2

  • SHA512

    e86b57c2a62046e46b8b5edebdd59a4f39d4a198cf83af8086bbfb559b22ae8b586833077f6092a94627ed9a32c9fcb413106f63a160290900d725ed1535132d

  • SSDEEP

    786432:M8mV0NuwtR/8+GDp9ULmz1MXxc9cy8avU5FVYiqV7pbM:M8mV0kwtR61yLmiBc9ia82I

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/WindowsDefenderApplicationGuard.wim
    /tmp/WindowsDefenderApplicationGuard.wim
    1⤵
      PID:576

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads