Overview

overview

3

Static

static

1

b280e418cc...b3.exe

windows7-x64

3

b280e418cc...b3.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    85s
  • max time network
    107s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-03-2023 11:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b280e418cc13c8f1efe66c8c5f4b83e0a544ddbb9d0c460e24d279b93a22c5b3.exe

  • Size

    5.3MB

  • MD5

    daffa640a69186627d8c2334901f1b86

  • SHA1

    3c7daeed595df7100ae082c41677178bec1bbaa2

  • SHA256

    b280e418cc13c8f1efe66c8c5f4b83e0a544ddbb9d0c460e24d279b93a22c5b3

  • SHA512

    1c1022cc5064295d5201f72a1fb2a164bfc5388ef2b8cf0d70f336557f6125c6dc104056dcb5057505243e46446109992199d2a12d9b0a916e3963d1408950cd

  • SSDEEP

    98304:f6CJJsPG4aQxuM0HsYspanM2ubkbBVxOnZUNlriiCSqBhYAYSq+h/Vsd/xi8Expe:vgpxl0HsYspanM2ubkbBVxOZymiCSqBo

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b280e418cc13c8f1efe66c8c5f4b83e0a544ddbb9d0c460e24d279b93a22c5b3.exe
    "C:\Users\Admin\AppData\Local\Temp\b280e418cc13c8f1efe66c8c5f4b83e0a544ddbb9d0c460e24d279b93a22c5b3.exe"
    1⤵
      PID:3756
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3756 -s 264
        2⤵
        • Program crash
        PID:1436
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 3756 -ip 3756
      1⤵
        PID:5092

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3756-133-0x0000000000F30000-0x00000000015B4000-memory.dmp

        Filesize

        6.5MB

        Download

      • memory/3756-134-0x0000000000F30000-0x00000000015B4000-memory.dmp

        Filesize

        6.5MB

        Download

      • memory/3756-136-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-135-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-137-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-138-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-140-0x00000000001F0000-0x00000000001F4000-memory.dmp

        Filesize

        16KB

        Download

      • memory/3756-143-0x0000000000790000-0x0000000000791000-memory.dmp

        Filesize

        4KB

        Download

      • memory/3756-141-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-146-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-148-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-147-0x00000000006B0000-0x00000000006B1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/3756-145-0x0000000000660000-0x0000000000663000-memory.dmp

        Filesize

        12KB

        Download

      • memory/3756-150-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-152-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-151-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-155-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-157-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-160-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-161-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-158-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-165-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-167-0x0000000000800000-0x0000000000840000-memory.dmp

        Filesize

        256KB

        Download

      • memory/3756-169-0x00000000006B0000-0x00000000006B1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/3756-170-0x00000000007F0000-0x00000000007F2000-memory.dmp

        Filesize

        8KB

        Download

      • memory/3756-172-0x0000000000760000-0x0000000000761000-memory.dmp

        Filesize

        4KB

        Download

      • memory/3756-171-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-164-0x00000000007A0000-0x00000000007A1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/3756-163-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-156-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-175-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-173-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-177-0x0000000000A40000-0x0000000000F05000-memory.dmp

        Filesize

        4.8MB

        Download

      • memory/3756-184-0x0000000000F30000-0x00000000015B4000-memory.dmp

        Filesize

        6.5MB

        Download