Overview

overview

3

Static

static

3

8edc40ea70...48.exe

windows7-x64

3

8edc40ea70...48.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    143s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/02/2024, 09:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    8edc40ea7094334758882999bf162348.exe

  • Size

    32KB

  • MD5

    8edc40ea7094334758882999bf162348

  • SHA1

    216e5b49e8eaa231d8fb56a533f1c12e06b3a2af

  • SHA256

    f146381ea44f9b3b789cd84d336c66c82f358e32d1bdef39aebcfdf2cd597cbd

  • SHA512

    a916bc629ea16d0d5bf6db8cd9df314a9ad11a91a4c3f495d644c476281104fa9d6d96ebac7ae4d39af167ac520216e1410e9bddacf11895d47a79ad6216e165

  • SSDEEP

    192:ubBRJpOA0hD0OSvkRJHJfH/bQDqMnNFUzzJZ30pBBaXv0:uNRJph0aOSvG/ffU+30hUs

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8edc40ea7094334758882999bf162348.exe
    "C:\Users\Admin\AppData\Local\Temp\8edc40ea7094334758882999bf162348.exe"
    1⤵
      PID:64
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 64 -s 256
        2⤵
        • Program crash
        PID:2220
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 64 -s 252
        2⤵
        • Program crash
        PID:3104
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 64 -ip 64
      1⤵
        PID:3468
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 64 -ip 64
        1⤵
          PID:4072

        Network

              MITRE ATT&CK Matrix

              Replay Monitor

              Loading Replay Monitor...

              Downloads

              • memory/64-0-0x0000000000400000-0x0000000000413000-memory.dmp

                Filesize

                76KB

                Download

              • memory/64-1-0x0000000000400000-0x0000000000413000-memory.dmp

                Filesize

                76KB

                Download