337cdaac210a7b71205206bce774618346b9a0445b9c4b4d30574c781cede598 | Triage

Analysis

max time kernel
122s
max time network
126s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
31/12/2023, 13:56

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

38db219cb427b24553b6630a7b44972d.exe
Size

367KB
MD5

38db219cb427b24553b6630a7b44972d
SHA1

bcb1b03b3e3adfc50d8a9c831e87aa8b003daa72
SHA256

337cdaac210a7b71205206bce774618346b9a0445b9c4b4d30574c781cede598
SHA512

85d38b34b6e9c3b01df307eda0677f49227607a5c1de5170741c45b90561e4754fa2f8e611afd99debb9392bc07caa555f4073277b0c2f9112f023b4d001b37c
SSDEEP

384:nOvVfOeCnlNJwz56qIpcRPZwa0s1UDzGq7W0m:ishw964l1K

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
2316	2256	WerFault.exe	16

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2256 wrote to memory of 2316	2256	38db219cb427b24553b6630a7b44972d.exe	29
PID 2256 wrote to memory of 2316	2256	38db219cb427b24553b6630a7b44972d.exe	29
PID 2256 wrote to memory of 2316	2256	38db219cb427b24553b6630a7b44972d.exe	29
PID 2256 wrote to memory of 2316	2256	38db219cb427b24553b6630a7b44972d.exe	29

C:\Users\Admin\AppData\Local\Temp\38db219cb427b24553b6630a7b44972d.exe
"C:\Users\Admin\AppData\Local\Temp\38db219cb427b24553b6630a7b44972d.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:2256
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2256 -s 516
  2⤵
  - Program crash
  PID:2316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2256-0-0x0000000000F90000-0x0000000000FF2000-memory.dmp

Filesize
392KB

Download
memory/2256-1-0x0000000074A80000-0x000000007516E000-memory.dmp

Filesize
6.9MB

Download
memory/2256-2-0x00000000006A0000-0x00000000006A1000-memory.dmp

Filesize
4KB

Download
memory/2256-3-0x0000000074A80000-0x000000007516E000-memory.dmp

Filesize
6.9MB

Download