Overview

overview

3

Static

static

file.exe

windows7-x64

1

file.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    92s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/01/2023, 12:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file.exe

  • Size

    365KB

  • MD5

    4c2af19f33c60065df680897debc3a40

  • SHA1

    ce0a6b22bf0be85f8d8b8ce40ff20d805e243b50

  • SHA256

    22310d97657d496f2dd510b19a57e338d56d7b25420821748eb0cf58c65ebeac

  • SHA512

    deeb56e2336e7f96f1dbd79dc60d3036f77de371d471f2b805ace99d74296d99c9e6cc7786e1d67149168b1c3b4e3f38e3066604839a8392a4816dde3242138d

  • SSDEEP

    6144:VL7PLoCn/bCj0FmKVBq1Eh8ooxupmL2xEjT:VLzUC/bm0FmKHuE8ooxupmL

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\file.exe
    "C:\Users\Admin\AppData\Local\Temp\file.exe"
    1⤵
      PID:4020
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4020 -s 764
        2⤵
        • Program crash
        PID:4916
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 4020 -ip 4020
      1⤵
        PID:5012

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/4020-132-0x0000000002E6D000-0x0000000002E83000-memory.dmp

        Filesize

        88KB

        Download

      • memory/4020-133-0x0000000002DF0000-0x0000000002E0C000-memory.dmp

        Filesize

        112KB

        Download

      • memory/4020-134-0x0000000000400000-0x0000000002C4E000-memory.dmp

        Filesize

        40.3MB

        Download