Overview

overview

3

Static

static

3

6c3acd37b0...c4.exe

windows7-x64

3

6c3acd37b0...c4.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    127s
  • max time network
    135s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/11/2023, 22:44

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6c3acd37b07a02f16f00c5e2a3791537670e47cf72aff73b7e572a2a8990a7c4.exe

  • Size

    14.5MB

  • MD5

    585c9a2749f389a06655c633fe8b5878

  • SHA1

    e42142dce8ada408a5c64650e107fa070a32946f

  • SHA256

    6c3acd37b07a02f16f00c5e2a3791537670e47cf72aff73b7e572a2a8990a7c4

  • SHA512

    403f11325db0eee8bb4b31854f44cfe624996921275916af86bbe3bcf56bec258a663a910ae0a0d0a78acff9b289417782213095080ba3db71dcce63520c0f83

  • SSDEEP

    393216:pBrIHWyMkOoav4rfn57MUSy1BVP1ucht5dDWk1zVNF+:pBU2yMIrfn5BTV1nXWQVN8

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6c3acd37b07a02f16f00c5e2a3791537670e47cf72aff73b7e572a2a8990a7c4.exe
    "C:\Users\Admin\AppData\Local\Temp\6c3acd37b07a02f16f00c5e2a3791537670e47cf72aff73b7e572a2a8990a7c4.exe"
    1⤵
      PID:1032
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1032 -s 652
        2⤵
        • Program crash
        PID:5112
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1032 -ip 1032
      1⤵
        PID:4264

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/1032-0-0x0000000000400000-0x0000000001A71000-memory.dmp

              Filesize

              22.4MB

              Download

            • memory/1032-2-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-4-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-7-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-11-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-15-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-19-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-23-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-26-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-27-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-28-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-29-0x0000000004B50000-0x0000000004F12000-memory.dmp

              Filesize

              3.8MB

              Download

            • memory/1032-30-0x0000000000400000-0x0000000001A71000-memory.dmp

              Filesize

              22.4MB

              Download