Analysis
-
max time kernel
16s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system -
submitted
06-07-2024 09:56
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
github.software.1.2.9.exe
Resource
win7-20240705-en
2 signatures
150 seconds
General
-
Target
github.software.1.2.9.exe
-
Size
516KB
-
MD5
0b7ef465e6ad4c6a671736f20f79e141
-
SHA1
ecc766f41168c898e985f5c502d000cee588d2b8
-
SHA256
2a1152a8f1689bf251fbea5c21cc178537ed20a6c92f6bff63403092df23d0c9
-
SHA512
6fe7dc79b5b023b9bce193c65c54a75065cd569c60492e6f08e6f23fc0865690abeb34644dc384a09eac618cfb2c09f2df74efdf4a2d733f8f60fbddb0555120
-
SSDEEP
12288:D20S+N0KzL7CteqhzPQkAjY1K1mDuNuQi:G+NRat5hDQkAj
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 2020 2116 WerFault.exe github.software.1.2.9.exe -
Suspicious use of WriteProcessMemory 4 IoCs
Processes:
github.software.1.2.9.exedescription pid process target process PID 2116 wrote to memory of 2020 2116 github.software.1.2.9.exe WerFault.exe PID 2116 wrote to memory of 2020 2116 github.software.1.2.9.exe WerFault.exe PID 2116 wrote to memory of 2020 2116 github.software.1.2.9.exe WerFault.exe PID 2116 wrote to memory of 2020 2116 github.software.1.2.9.exe WerFault.exe