Overview

overview

10

Static

static

3

35d59af3c3...66.exe

windows7-x64

10

35d59af3c3...66.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 18:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    35d59af3c31062bf30a06654ac1a6566.exe

  • Size

    492KB

  • MD5

    35d59af3c31062bf30a06654ac1a6566

  • SHA1

    26e96c551722946964e092e9a4289c44cbc8f869

  • SHA256

    28b48cc00fa7c7018a2a8e5d0ba531a517fd0dd282330037b286900f027aeab5

  • SHA512

    d7c05ec20d2afd6ecd3518987fc439bff54ef2cda0d164da8154d446985b5f021aaffef37a38c54b5fc41c25c420ffed521c0313a64f7dfd400e109dc90f73cc

  • SSDEEP

    12288:JvUuQ5q8MNWFsMYUR27NvistViU7oQYxg:+Tq8qWTYp71GU7oxxg

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\35d59af3c31062bf30a06654ac1a6566.exe
    "C:\Users\Admin\AppData\Local\Temp\35d59af3c31062bf30a06654ac1a6566.exe"
    1⤵
      PID:1136
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1136 -s 520
        2⤵
        • Program crash
        PID:4680
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 1136 -ip 1136
      1⤵
        PID:2036

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1136-0-0x00000000775F2000-0x00000000775F3000-memory.dmp

        Filesize

        4KB

        Download

      • memory/1136-1-0x0000000000400000-0x0000000000559000-memory.dmp

        Filesize

        1.3MB

        Download