Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 17:36

General

  • Target

    26416c6729b01c71c357d1ccf40e520ca5d53cd7da43e1ed5cee79004407e474.exe

  • Size

    1.5MB

  • MD5

    1b23c2c5ca91cb1b8c9aae0fb6f88f26

  • SHA1

    045e3f5a0ba416b756a49fb15e3dff53fa825a27

  • SHA256

    26416c6729b01c71c357d1ccf40e520ca5d53cd7da43e1ed5cee79004407e474

  • SHA512

    70e91ee9aae03b0b9df8e745b756a2748c779c02fdba86c7a104de9321a88d413d4ee4ad5957d2725b895815e70d918b1d62e0b81a3a85024259604053e4f12f

  • SSDEEP

    24576:Oeq85nvk9FkcziaRfaQoNO1JO1g+T2uDbNoiifOcaQGsMILOQ:O1sKkcy1g+T2ab4OcaQGsMi

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\26416c6729b01c71c357d1ccf40e520ca5d53cd7da43e1ed5cee79004407e474.exe
    "C:\Users\Admin\AppData\Local\Temp\26416c6729b01c71c357d1ccf40e520ca5d53cd7da43e1ed5cee79004407e474.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 2932 -s 288
      2⤵
      • Program crash
      PID:1944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads