Overview

overview

10

Static

static

10

948-55-0x0...ry.exe

windows7-x64

1

948-55-0x0...ry.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-06-2023 22:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    948-55-0x0000000000400000-0x0000000000520000-memory.exe

  • Size

    1.1MB

  • MD5

    e16f0750039b579b848848e1e1652bec

  • SHA1

    1a143f5dd33f90cf0ee75c238bc5197114ffab9d

  • SHA256

    fa541f8177d656fcf649444537b58eaff9b6097142f5c1439728e98a720e8790

  • SHA512

    4843a9f2c67fb02288670faabe0fdb6ce0dc33e764df5bfdf6af8c3e4825b3eac9256e4929eede449d6d1394758000476845e69288aa0188c2f520d53dc07734

  • SSDEEP

    12288:n0Ht9Tp+l0EqE1can/HVk0bXr5OjRPXSvvhkpoPX3/9:k7TEKScWy0bXrwjR/ukpoPl

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\948-55-0x0000000000400000-0x0000000000520000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\948-55-0x0000000000400000-0x0000000000520000-memory.exe"
    1⤵
      PID:3612
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3612 -s 144
        2⤵
        • Program crash
        PID:1164
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 3612 -ip 3612
      1⤵
        PID:1312

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads