Overview

overview

3

Static

static

3

08dfd7765a...7b.exe

windows7-x64

3

08dfd7765a...7b.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    127s
  • max time network
    70s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 00:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    08dfd7765a31859cfa1c07b2fbad487b.exe

  • Size

    537KB

  • MD5

    08dfd7765a31859cfa1c07b2fbad487b

  • SHA1

    d5e6bc2e7bd7c8b0f5fcfe1b18e643276ebf5093

  • SHA256

    fd35d4f233883ebf8f01f3dee06a887cb04e8691c2cf540240efca74470243fe

  • SHA512

    89f97c9c869a17d8bc058740c9648948cbad691561aaec561c4cd4d0ee781448b6dee7178abd34bdfb131e33853bf2f403fee5bbcc4cdff2a36ddef825b05fde

  • SSDEEP

    12288:p695dEMH/UxCmxbw1C2CMVJs9FCvHQo30veSBiQPp4kv8jZ:k9sx3w1pVJCFzRGELPpFUF

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\08dfd7765a31859cfa1c07b2fbad487b.exe
    "C:\Users\Admin\AppData\Local\Temp\08dfd7765a31859cfa1c07b2fbad487b.exe"
    1⤵
      PID:2984
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2984 -s 324
        2⤵
        • Program crash
        PID:1368
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2984 -s 328
        2⤵
        • Program crash
        PID:4612
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 376 -p 2984 -ip 2984
      1⤵
        PID:760
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 480 -p 2984 -ip 2984
        1⤵
          PID:3412

        Network

              MITRE ATT&CK Matrix

              Replay Monitor

              Loading Replay Monitor...

              Downloads

              • memory/2984-0-0x0000000000400000-0x0000000000506096-memory.dmp

                Filesize

                1.0MB

                Download

              • memory/2984-1-0x0000000000400000-0x0000000000506096-memory.dmp

                Filesize

                1.0MB

                Download