Overview

overview

10

Static

static

3

bba5742cbd...80.exe

windows7-x64

10

bba5742cbd...80.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    67s
  • max time network
    61s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240419-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29-04-2024 01:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bba5742cbd5e620ae6206dd33bd7d6669b8ba1406f36eeb3ba4fa13ff1f13580.exe

  • Size

    419KB

  • MD5

    27bdf1a30740d66ac16cb2924842fc4c

  • SHA1

    bf5f648b4b4a1a928b0f38ea21800cba55fab626

  • SHA256

    bba5742cbd5e620ae6206dd33bd7d6669b8ba1406f36eeb3ba4fa13ff1f13580

  • SHA512

    afe92674a427ddc2a89630499cfce84effe57c9dbfa710ec3f3ea9ec1064a2d00c52177e4bd09e64d1e4248c57f9492a99bfbe4a82b85679fb0323ff3fb3aaf0

  • SSDEEP

    6144:JWigHbPbnW5OdaZLB+zKwTTfRLpEGzYSIpB5Apy3E6Y:JZ2zzsZN+JTTlptIp7AIU6Y

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bba5742cbd5e620ae6206dd33bd7d6669b8ba1406f36eeb3ba4fa13ff1f13580.exe
    "C:\Users\Admin\AppData\Local\Temp\bba5742cbd5e620ae6206dd33bd7d6669b8ba1406f36eeb3ba4fa13ff1f13580.exe"
    1⤵
      PID:3168
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3168 -s 696
        2⤵
        • Program crash
        PID:2092
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 3168 -ip 3168
      1⤵
        PID:1924

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3168-1-0x0000000000AB0000-0x0000000000BB0000-memory.dmp

        Filesize

        1024KB

        Download

      • memory/3168-2-0x0000000002500000-0x000000000256D000-memory.dmp

        Filesize

        436KB

        Download

      • memory/3168-3-0x0000000000400000-0x000000000086B000-memory.dmp

        Filesize

        4.4MB

        Download

      • memory/3168-6-0x0000000000AB0000-0x0000000000BB0000-memory.dmp

        Filesize

        1024KB

        Download

      • memory/3168-7-0x0000000002500000-0x000000000256D000-memory.dmp

        Filesize

        436KB

        Download

      • memory/3168-8-0x0000000000400000-0x000000000086B000-memory.dmp

        Filesize

        4.4MB

        Download

      • memory/3168-11-0x0000000000400000-0x000000000086B000-memory.dmp

        Filesize

        4.4MB

        Download

      • memory/3168-13-0x0000000000400000-0x000000000086B000-memory.dmp

        Filesize

        4.4MB

        Download