Overview

overview

10

Static

static

10

1600-456-0...ry.exe

windows7-x64

1

1600-456-0...ry.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-03-2024 08:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1600-456-0x0000000000400000-0x000000000046C000-memory.exe

  • Size

    432KB

  • MD5

    bd0f4c34626eaee3374ca1aea83e0907

  • SHA1

    85b229467a088f586176a823b7ed0c2c396a2f1d

  • SHA256

    33f0c90e565cac766cc4c626aa7eaa200e3ef4367fdd1f53e335c8f1b3f62350

  • SHA512

    9520dd3a311d4c79cccff8a4ee42d600c0ede5e3e7cee5a9f925818e7065a97ef24360688e8d100b7f3592b6712e7a72d9a23773fe17c7142ca64bedce92ce7f

  • SSDEEP

    6144:cuQRHexo0nwlQvG4IyynVKzVKJ5/eRFHVmGizN/9o0wVEhKhB1a:cuQRHexo0n24zVK32RRVmGiznwVbh3

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1600-456-0x0000000000400000-0x000000000046C000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\1600-456-0x0000000000400000-0x000000000046C000-memory.exe"
    1⤵
      PID:2032
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2032 -s 216
        2⤵
        • Program crash
        PID:4568
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2032 -ip 2032
      1⤵
        PID:1748

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads