Overview

overview

10

Static

static

10

2023-02-14...er.exe

windows7-x64

1

2023-02-14...er.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    74s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/02/2023, 05:19

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2023-02-14_846a6e71854d21c5bb5563215d6b8572_kovter.exe

  • Size

    1.1MB

  • MD5

    846a6e71854d21c5bb5563215d6b8572

  • SHA1

    71f66992a217d60692ebf0560ef3e4b965e17498

  • SHA256

    f085fadc5ec903dbb66fb418cec885d6b05c14fd2978ecfbe98470725a4aca88

  • SHA512

    b941bdf9d299862e96c7a15cb523f6ab329dac691d8de39bc7522cad6de9a637c13e5152fec6ee1556c7e4c05e1a48a09170cb3e0d6e342448399e90aa0fc2ab

  • SSDEEP

    12288:L2U6SxPiXcQPbFQI2blvWcnpDAEPGZHRW+RuZT4ay:L2U6qyckbFQIWlLpDAEeZHRHRuZTFy

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2023-02-14_846a6e71854d21c5bb5563215d6b8572_kovter.exe
    "C:\Users\Admin\AppData\Local\Temp\2023-02-14_846a6e71854d21c5bb5563215d6b8572_kovter.exe"
    1⤵
      PID:4696
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4696 -s 216
        2⤵
        • Program crash
        PID:4808
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 4696 -ip 4696
      1⤵
        PID:856

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads