Analysis
-
max time kernel
151s -
max time network
169s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
26-12-2023 08:56
General
-
Target
61a77c73a5d5f80f4969dadd96694948.exe
-
Size
127KB
-
MD5
61a77c73a5d5f80f4969dadd96694948
-
SHA1
ab5ed67cf58204d78c3d0eb3c54ede9d89048df6
-
SHA256
c61f7ecb6aa9aeb278a6dbf94a1525315ad0a226fcd51b698c07410ef84f11d1
-
SHA512
802d6393bdffe8b2010e95e6d76de5855b88d3345ce4d9281bd669e635eb2c737d440300bd3ad891bc6c3a6c9c04132c11be21f2dcef4c5c822946d123fcb73e
-
SSDEEP
3072:PjY9FI+zeOKndRzAlSWc+SeLebsbJ3IQQ0jKNKSfL/U:PChzNsslSyRagbJ3IQQJ
Score
3/10
Malware Config
Signatures
-
Program crash 2 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\61a77c73a5d5f80f4969dadd96694948.exe"C:\Users\Admin\AppData\Local\Temp\61a77c73a5d5f80f4969dadd96694948.exe"1⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3168 -s 2882⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3168 -s 2882⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 356 -p 3168 -ip 31681⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
140KB
-
Filesize
184KB
-
Filesize
184KB