4c554617bdf5cb6e5b770652a07e68e1d37c66d4e5fd059c76cb503d0eada0fb

Analysis

max time kernel
30s
max time network
35s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
04/08/2023, 01:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

okaaSpoofer.exe
Size

2.0MB
MD5

32cceb3c70c263ba915ae9e961669482
SHA1

4fa05b431dda6d1a05f08ecbd0af2ddaeaca1438
SHA256

4c554617bdf5cb6e5b770652a07e68e1d37c66d4e5fd059c76cb503d0eada0fb
SHA512

b50fb50b934ec56ff5e44976b8de4459a5440e5d9301e0637128e48b45634126b99e3fe19743470defdcb12a8f0d8c9aea48e919643e6a0ea4006c2a99ad3191
SSDEEP

24576:KSJu5rhZ/wVoXnNMRKMlgm5ozsInrx8VkbURa33yxJQ32GCZC8h2jubOmnzguIa:LgNR4OSRtlgmOANYCk3CZC8Z6uIa

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3188	428	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\okaaSpoofer.exe
"C:\Users\Admin\AppData\Local\Temp\okaaSpoofer.exe"
1⤵
PID:428
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 428 -s 1532
  2⤵
  - Program crash
  PID:3188

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 428 -ip 428
1⤵
PID:4196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/428-133-0x0000000000400000-0x000000000060F000-memory.dmp

Filesize
2.1MB

Download
memory/428-134-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-136-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-137-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-138-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-135-0x0000000000400000-0x000000000060F000-memory.dmp

Filesize
2.1MB

Download
memory/428-141-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-142-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-143-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-144-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-145-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-146-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-147-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-148-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-149-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-150-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-151-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-152-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-154-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-153-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-156-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-157-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-158-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-155-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-159-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-160-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-161-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-162-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-163-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-164-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-165-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-166-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-167-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-168-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-169-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-170-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-172-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-173-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-174-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-171-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-176-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-177-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-178-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-175-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-179-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-180-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-181-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-182-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-184-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-183-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-186-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-187-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-189-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-188-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-185-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-190-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-191-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-192-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-193-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-194-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-195-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-196-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-197-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-198-0x00000000022A0000-0x00000000023A8000-memory.dmp

Filesize
1.0MB

Download
memory/428-384-0x0000000000770000-0x0000000000771000-memory.dmp

Filesize
4KB

Download
memory/428-393-0x0000000077110000-0x0000000077111000-memory.dmp

Filesize
4KB

Download
memory/428-395-0x0000000077180000-0x0000000077181000-memory.dmp

Filesize
4KB

Download
memory/428-399-0x00000000771B0000-0x00000000771B1000-memory.dmp

Filesize
4KB

Download
memory/428-402-0x00000000777F0000-0x00000000777F1000-memory.dmp

Filesize
4KB

Download
memory/428-398-0x0000000077140000-0x0000000077141000-memory.dmp

Filesize
4KB

Download
memory/428-404-0x0000000077130000-0x0000000077131000-memory.dmp

Filesize
4KB

Download
memory/428-405-0x0000000077800000-0x0000000077801000-memory.dmp

Filesize
4KB

Download
memory/428-408-0x00000000777D0000-0x00000000777D1000-memory.dmp

Filesize
4KB

Download
memory/428-410-0x00000000771A0000-0x00000000771A1000-memory.dmp

Filesize
4KB

Download
memory/428-411-0x0000000077190000-0x0000000077191000-memory.dmp

Filesize
4KB

Download
memory/428-414-0x0000000077310000-0x0000000077311000-memory.dmp

Filesize
4KB

Download
memory/428-415-0x0000000077100000-0x0000000077101000-memory.dmp

Filesize
4KB

Download
memory/428-417-0x00000000770F0000-0x00000000770F1000-memory.dmp

Filesize
4KB

Download
memory/428-421-0x00000000777C0000-0x00000000777C1000-memory.dmp

Filesize
4KB

Download
memory/428-420-0x0000000077320000-0x0000000077321000-memory.dmp

Filesize
4KB

Download
memory/428-423-0x0000000077350000-0x0000000077351000-memory.dmp

Filesize
4KB

Download
memory/428-428-0x00000000770E0000-0x00000000770E1000-memory.dmp

Filesize
4KB

Download
memory/428-426-0x0000000000400000-0x000000000060F000-memory.dmp

Filesize
2.1MB

Download
memory/428-430-0x0000000077330000-0x0000000077331000-memory.dmp

Filesize
4KB

Download
memory/428-585-0x00000000777E0000-0x00000000777E1000-memory.dmp

Filesize
4KB

Download
memory/428-608-0x0000000077390000-0x0000000077391000-memory.dmp

Filesize
4KB

Download
memory/428-618-0x0000000077380000-0x0000000077381000-memory.dmp

Filesize
4KB

Download
memory/428-619-0x0000000077170000-0x0000000077171000-memory.dmp

Filesize
4KB

Download
memory/428-645-0x0000000000400000-0x000000000060F000-memory.dmp

Filesize
2.1MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads