Overview

overview

10

Static

static

10

2023-08-22...JC.exe

windows7-x64

3

2023-08-22...JC.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230831-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230831-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/09/2023, 15:36

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2023-08-22_2e0d33ba5dbfa8eccdcbddc0bc3b3390_gandcrab_JC.exe

  • Size

    155KB

  • MD5

    2e0d33ba5dbfa8eccdcbddc0bc3b3390

  • SHA1

    f9becff777f42eb77db9cf3f5f77f1be7e3fa880

  • SHA256

    f955035242ffa9bde3904e1c51b491ba81b76e16e912c5ed292efcaf55b04c1b

  • SHA512

    9ffe0b7827870d3910508f3852d1dcd46fe28ce812f03397411dc026195e59fc9ef80450bd0ed6007006d9e6591c60c049403042f0df3a9e9f242f4d3d2c3cf7

  • SSDEEP

    3072:l5K/B0toLQSNJ3lZHQsozTS+SMqqDL2/TrKYyG:lcytwt91yTS+xqqDL6HKY

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2023-08-22_2e0d33ba5dbfa8eccdcbddc0bc3b3390_gandcrab_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\2023-08-22_2e0d33ba5dbfa8eccdcbddc0bc3b3390_gandcrab_JC.exe"
    1⤵
      PID:5064
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 5064 -s 256
        2⤵
        • Program crash
        PID:1064
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 5064 -ip 5064
      1⤵
        PID:2808

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads