Overview

overview

10

Static

static

10

Server.exe

windows11-21h2-x64

3

Resubmissions

09-07-2024 19:26

240709-x51r2s1djj 10

09-07-2024 19:21

240709-x2xk8aselg 10

Analysis

  • max time kernel
    1564s
  • max time network
    1541s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240709-en
  • resource tags

    arch:x64arch:x86image:win11-20240709-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    09-07-2024 19:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Server.exe

  • Size

    1.3MB

  • MD5

    dd6667db55acaefa2d7e99dcf5d97a26

  • SHA1

    c1b281ef573df4da584294c61b5322edfed589ad

  • SHA256

    ce8fd5ec0b2ee4e5d87d35622eeaa022ee971801c97bcb3726ca6ebe4b576238

  • SHA512

    916c8b63400c0a8e495fc59d8e348499a6f04421e79599803c7ac4cd828c82f389bfd733471de27cc1643c03723429f8544446d9adc69082e6a5032139a1f1f1

  • SSDEEP

    24576:RIVMEFyWLoQJV+fLmomlEkmmsEnE7E7E7EUmemmmmmmIDmeIjwnaKk:RWMEMWlVILmomSkmmtEQQQUmemmmmmm7

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Server.exe
    "C:\Users\Admin\AppData\Local\Temp\Server.exe"
    1⤵
      PID:860
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 860 -s 844
        2⤵
        • Program crash
        PID:4184
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 860 -ip 860
      1⤵
        PID:1448

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/860-0-0x0000000074F6E000-0x0000000074F6F000-memory.dmp

        Filesize

        4KB

        Download

      • memory/860-1-0x0000000000CF0000-0x0000000000E38000-memory.dmp

        Filesize

        1.3MB

        Download

      • memory/860-2-0x0000000005E00000-0x00000000063A6000-memory.dmp

        Filesize

        5.6MB

        Download