Overview

overview

10

Static

static

10

1428-73-0x...ry.exe

windows7-x64

1

1428-73-0x...ry.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-03-2023 18:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1428-73-0x0000000000400000-0x0000000000480000-memory.exe

  • Size

    512KB

  • MD5

    0077e9436449fc9d919821b3f9a48f69

  • SHA1

    369b63e9a5a9cadcf34e45f1e5026a50ed505b1b

  • SHA256

    cabfd374c7d3d2a62c9653b7925b208801e4ecf2a0d4423ae4bf694be18e11e5

  • SHA512

    ccc8208797c884499558fbe416543ca461518432a522e5f8f6258d8b7434f9df33220dcea5b8eb00dc641b76455a6f4d23abca8ae6376f90b1006260cd19b22c

  • SSDEEP

    6144:U43E0RO2xAQTC55PIzpVzi3ORDZZQMBt3JJmIGwZHEfcidC48h47QksAOZZPRXMT:U406AQY5PupeoDrQ+3JJmYZHQJs/ZP

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1428-73-0x0000000000400000-0x0000000000480000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\1428-73-0x0000000000400000-0x0000000000480000-memory.exe"
    1⤵
      PID:2628
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2628 -s 124
        2⤵
        • Program crash
        PID:4740
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 2628 -ip 2628
      1⤵
        PID:2792

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads