Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
26-05-2024 00:01
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Setup.exe
Resource
win7-20240221-en
2 signatures
150 seconds
General
-
Target
Setup.exe
-
Size
920KB
-
MD5
82d32f00cafa7c3523a7afa09fd1d215
-
SHA1
5c37e4de2ad8c2a03ba4380f7ac72f385d900b87
-
SHA256
b96a340bb8616e1569c63293a9b19ca57970b8bd94dd82cf3a7270eb625b3461
-
SHA512
717070eb25b34024eecd08c077f05ac51474e54878d3b92c0b681a19a6eeec3c01b8189e43ae1079c6a990584dcea9ce32da2183786d3811bc0fdba411a8e305
-
SSDEEP
24576:6tASL4DCrL58sMaRoNWTn6WHo/gTcxvz+6fH7C:e4DCrL58sVoNyOggzZe
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 2504 2036 WerFault.exe Setup.exe -
Suspicious use of WriteProcessMemory 7 IoCs
Processes:
Setup.exedescription pid process target process PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe PID 2036 wrote to memory of 2504 2036 Setup.exe WerFault.exe