Overview

overview

10

Static

static

10

2023-02-12...er.exe

windows7-x64

1

2023-02-12...er.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-02-2023 04:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2023-02-12_2a23a973128a321fd0569d5228ff7a1e_kovter.exe

  • Size

    1.1MB

  • MD5

    2a23a973128a321fd0569d5228ff7a1e

  • SHA1

    44c4770ad2e1546a8435196a6bb35d54e94bef18

  • SHA256

    12d596d72a2d7fd14775f191a6d62d39aa5bd33f521d401b695f491461afdc57

  • SHA512

    e9380b22e975b42b65dfc08ef666cdbfbc397ce10dc6c2084723bc797454d8c133585d41f6e7579a8b2a02dc53fabff125cf02b3155f728f29b2c325e2c9eb5e

  • SSDEEP

    12288:vaSYm5BfDGdDcRfifEBGrrbui47xLHGKdFPH3h/H6U7W:va5m55GFcRfOQGrvuiIxLmKPPH3paUS

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2023-02-12_2a23a973128a321fd0569d5228ff7a1e_kovter.exe
    "C:\Users\Admin\AppData\Local\Temp\2023-02-12_2a23a973128a321fd0569d5228ff7a1e_kovter.exe"
    1⤵
      PID:3284
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3284 -s 216
        2⤵
        • Program crash
        PID:4260
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 3284 -ip 3284
      1⤵
        PID:5064

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads