Overview

overview

3

Static

static

3

42d1de2a0b...7f.exe

windows7-x64

3

42d1de2a0b...7f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    105s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05-01-2024 05:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42d1de2a0b2b8ef1576d455908ece27f.exe

  • Size

    132KB

  • MD5

    42d1de2a0b2b8ef1576d455908ece27f

  • SHA1

    8643a946113fddb8dc5c2d5bb23a183a6d03fe79

  • SHA256

    4012c82fcc2ac0032766c854b87ebdac0f26d63a69d5efd29c407d1aaa8012ec

  • SHA512

    25f29c1ff3fa2b67a804524f5c5462d9eeb16c2c9d584982698721728e9166feafc53a918195a3e666d78c8d8e68bffdb5bdd21ee6c93d878b56517ade729cc8

  • SSDEEP

    3072:uA0eKcqgaaY6elOqgKMPJOzisUkSNRqFxbBzYhoTILnGM4:uA0eK4ajlOqgKQOzisUqbBzYK7z

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 4412 -ip 4412
    1⤵
      PID:1416
    • C:\Users\Admin\AppData\Local\Temp\42d1de2a0b2b8ef1576d455908ece27f.exe
      "C:\Users\Admin\AppData\Local\Temp\42d1de2a0b2b8ef1576d455908ece27f.exe"
      1⤵
        PID:4412
        • C:\Windows\SysWOW64\WerFault.exe
          C:\Windows\SysWOW64\WerFault.exe -u -p 4412 -s 228
          2⤵
          • Program crash
          PID:3448

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/4412-0-0x0000000000400000-0x000000000044E000-memory.dmp

        Filesize

        312KB

        Download

      • memory/4412-1-0x0000000000400000-0x000000000044E000-memory.dmp

        Filesize

        312KB

        Download