Overview

overview

3

Static

static

3

virussign....d0.exe

windows7-x64

1

virussign....d0.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    132s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/06/2024, 09:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    virussign.com_1b4bb4bc0352847f3c547ec21cc372d0.exe

  • Size

    119KB

  • MD5

    1b4bb4bc0352847f3c547ec21cc372d0

  • SHA1

    25d2e37c1ce84dce167a00641cc6eaeaafe1d6c8

  • SHA256

    d7e28316278f1b35b5e301493fdfb0827b93059f9d933c3b8eaff1a23f5f2124

  • SHA512

    4e2a5daebe061b64c475321a9554321daf1ce584a0f2c984f348f52a0e88efc496c81c48fc9fdbe87db159f82686b88963634ec1bcd1fd778b6a3db46d87a6af

  • SSDEEP

    1536:SitCl6S+S5tnCvvTzpitCl6S+pHwXEa61XMZCeEn7AxBRAZqVAKzALppjc:Spl6CnC5pl6RHwo8soECAKzAde

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\virussign.com_1b4bb4bc0352847f3c547ec21cc372d0.exe
    "C:\Users\Admin\AppData\Local\Temp\virussign.com_1b4bb4bc0352847f3c547ec21cc372d0.exe"
    1⤵
      PID:3096
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3096 -s 216
        2⤵
        • Program crash
        PID:1704
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 3096 -ip 3096
      1⤵
        PID:4820

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/3096-0-0x0000000002E30000-0x0000000002E65000-memory.dmp

              Filesize

              212KB

              Download