Analysis

  • max time kernel
    138s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30-08-2023 04:44

General

  • Target

    clockLightTheme.xml

  • Size

    3KB

  • MD5

    2235609a58ada82f2110d941341a720d

  • SHA1

    d3b06251eb8f131034ba1ea3b0db982cb31bd813

  • SHA256

    d89ab1d4bc636a73d64ef1d8976d517f13449a11af28d70e88ca3d0c40e114a7

  • SHA512

    ff7543b27941add4a92579f1a55f3b40a16cd8ec8cc43b678b229be38a3878267fcdbb80b040e91132fd938082c47e6e237f62ac3903422ad9499cf7164228d5

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\clockLightTheme.xml"
    1⤵
      PID:220
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 220 -s 448
        2⤵
        • Program crash
        PID:448
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -pss -s 368 -p 220 -ip 220
      1⤵
        PID:4260

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/220-0-0x00007FFC34410000-0x00007FFC34420000-memory.dmp

        Filesize

        64KB

      • memory/220-1-0x00007FFC74390000-0x00007FFC74585000-memory.dmp

        Filesize

        2.0MB

      • memory/220-2-0x00007FFC74390000-0x00007FFC74585000-memory.dmp

        Filesize

        2.0MB

      • memory/220-3-0x00007FFC71E70000-0x00007FFC72139000-memory.dmp

        Filesize

        2.8MB

      • memory/220-4-0x00007FFC34410000-0x00007FFC34420000-memory.dmp

        Filesize

        64KB

      • memory/220-5-0x00007FFC74390000-0x00007FFC74585000-memory.dmp

        Filesize

        2.0MB