Overview

overview

3

Static

static

3

a1de8a3082...de.exe

windows7-x64

3

a1de8a3082...de.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/02/2024, 12:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a1de8a3082625ec6a3010776174e7bde.exe

  • Size

    430KB

  • MD5

    a1de8a3082625ec6a3010776174e7bde

  • SHA1

    1902ec3e95eaf63022587a7f2919d45e291b7184

  • SHA256

    2ee71902341362824726f0d9b74b09b3b4572d823181159ace0940681e270188

  • SHA512

    35d7e70ddc5697d41b4b56d197782df47d102b0a0bc921e714169823a06e955de0a06773391892f6e9001925cd04a3e408c3b9c3b9f2eda035422189c905814d

  • SSDEEP

    6144:Ulsy4TNbEm1B1zzqaCh9Ju/2x+vw0b8ajNglS2+gUXpP9YC4r:UdwNIm1B1zzqrh9Jf+btwSfgUnBI

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a1de8a3082625ec6a3010776174e7bde.exe
    "C:\Users\Admin\AppData\Local\Temp\a1de8a3082625ec6a3010776174e7bde.exe"
    1⤵
      PID:1520
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1520 -s 328
        2⤵
        • Program crash
        PID:3068
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 1520 -ip 1520
      1⤵
        PID:2136

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1520-0-0x0000000000E00000-0x0000000000E70000-memory.dmp

        Filesize

        448KB

        Download