Overview

overview

10

Static

static

3

VirusShare...70.exe

windows7-x64

10

VirusShare...70.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    100s
  • max time network
    103s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/06/2024, 12:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VirusShare_54dfc29fc42caf6af1c5f30a55238a70.exe

  • Size

    100KB

  • MD5

    54dfc29fc42caf6af1c5f30a55238a70

  • SHA1

    3513059c7ccfea44d205fb7bf1a77f8b597eee92

  • SHA256

    bb685539c59d667f34b30fdccbe2a6eb78486a530383e6edf940a4b6b7a82bda

  • SHA512

    88449c57cc26049f073ba571264c025285d7ff0d8bc8c0b9a9e6e01be1daa086fbe71e176ddd6830f72d05f84b10fc5f4c3188b4f60b31fa0aa2ce1a279bfa81

  • SSDEEP

    1536:fHC/S0Ax3IQumqpl9cy4veQzOtLKCDlDYPLv8gDEgRqlO:vlZ3azcy4veQzO9D2PomEgRY

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\VirusShare_54dfc29fc42caf6af1c5f30a55238a70.exe
    "C:\Users\Admin\AppData\Local\Temp\VirusShare_54dfc29fc42caf6af1c5f30a55238a70.exe"
    1⤵
      PID:2120
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2120 -s 616
        2⤵
        • Program crash
        PID:1564
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 2120 -ip 2120
      1⤵
        PID:1420

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/2120-0-0x00000000020E0000-0x00000000020E4000-memory.dmp

        Filesize

        16KB

        Download

      • memory/2120-1-0x0000000000400000-0x000000000041A000-memory.dmp

        Filesize

        104KB

        Download