Analysis

  • max time kernel
    1441s
  • max time network
    1442s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    16-07-2024 08:54

General

  • Target

    78d4fce0c253356bf72cf72f260f27a3f0f3cf0a904a3618f3011cbe0b4e882e.exe

  • Size

    254KB

  • MD5

    310b02e1da6639192d8611927027d8cc

  • SHA1

    ba5c0be3c0742a8119f701490f3f01b3b6abf49b

  • SHA256

    78d4fce0c253356bf72cf72f260f27a3f0f3cf0a904a3618f3011cbe0b4e882e

  • SHA512

    7e11857a8ffcd7c237c426d6502937c707f09918231af43e37cfeed4e23465042e4b6967e58d4d4520ec69da02128b1470236a0dca01879e9745568186f78608

  • SSDEEP

    3072:DLhtgSlZAeKoNhb64VzKRJWpLXOe/TYUAk/M2lH0+6m6MU0NTMnr+rtnd9mTRp4r:PsxWp9TYUzX6Zm6MU0NNgX4r

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\78d4fce0c253356bf72cf72f260f27a3f0f3cf0a904a3618f3011cbe0b4e882e.exe
    "C:\Users\Admin\AppData\Local\Temp\78d4fce0c253356bf72cf72f260f27a3f0f3cf0a904a3618f3011cbe0b4e882e.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2528
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 2528 -s 172
      2⤵
      • Program crash
      PID:2552

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads