Analysis
-
max time kernel
158s -
max time network
169s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
31-12-2023 04:02
General
-
Target
27595bea0b9b2b6f21cf7d6b4ee33eb0.exe
-
Size
227KB
-
MD5
27595bea0b9b2b6f21cf7d6b4ee33eb0
-
SHA1
a35cfcb22f7c3b0ece65d14fe52bc8f62592a339
-
SHA256
89c1dfd5ee6fe5faa9ecb24edf44ec559450b88a32447f35f2c0218d1ab7e21b
-
SHA512
3ab835c3332429dc4790b5cf91b7bb372daada0a553780305efc12d1ac42f4774e6bc542b2ddbf1517341bf356632e04672ff73396800eaf4a2ad491778c41f8
-
SSDEEP
6144:/+ZqED8o6hYAunn1tWcq6cPAB/ouSZeu9ffz:UFYoT9n1QcqD4ge2
Score
3/10
Malware Config
Signatures
-
Program crash 2 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\27595bea0b9b2b6f21cf7d6b4ee33eb0.exe"C:\Users\Admin\AppData\Local\Temp\27595bea0b9b2b6f21cf7d6b4ee33eb0.exe"1⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1552 -s 4762⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1552 -s 4762⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 1552 -ip 15521⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1024KB
-
Filesize
1024KB