Overview

overview

3

Static

static

3

458e84e6e2...32.exe

windows7-x64

1

458e84e6e2...32.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    180s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/12/2023, 00:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    458e84e6e2da214009b7caab6004b132.exe

  • Size

    133KB

  • MD5

    458e84e6e2da214009b7caab6004b132

  • SHA1

    f4da3700f0b0130a97e420895836fc5e625d16af

  • SHA256

    78247cdd4cd0f1e06aaf0a28408274fa9f38a2a7b8af900ea5e6fd30cfef7855

  • SHA512

    ca8f6c3d7e30dba53ec05ef9ae8473624e6c5e032f722b938eade43ca5acdfcbccbb1a8946a34d6b0a24cf95d4d6858f3c58b8e7cacfcf1e29a8c4506a634478

  • SSDEEP

    3072:X+FDzK71QkbstyJjCKICpC72s/mlaXgkstt6:X+I713bstyJj0sC7/Hg/Y

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\458e84e6e2da214009b7caab6004b132.exe
    "C:\Users\Admin\AppData\Local\Temp\458e84e6e2da214009b7caab6004b132.exe"
    1⤵
      PID:1028
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1028 -s 416
        2⤵
        • Program crash
        PID:804
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 1028 -ip 1028
      1⤵
        PID:4824

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/1028-0-0x0000000000400000-0x0000000000429000-memory.dmp

              Filesize

              164KB

              Download

            • memory/1028-1-0x0000000000400000-0x0000000000429000-memory.dmp

              Filesize

              164KB

              Download