Overview

overview

10

Static

static

3

15540D1498...BF.exe

windows7-x64

3

15540D1498...BF.exe

windows10-2004-x64

3

1D34D800AA...EE.exe

windows7-x64

3

1D34D800AA...EE.exe

windows10-2004-x64

3

301210D555...6F.exe

windows7-x64

10

301210D555...6F.exe

windows10-2004-x64

10

60C01A897D...64.exe

windows7-x64

10

60C01A897D...64.exe

windows10-2004-x64

10

67E4F53018...CB.exe

windows7-x64

10

67E4F53018...CB.exe

windows10-2004-x64

10

8953398DE4...31.exe

windows7-x64

10

8953398DE4...31.exe

windows10-2004-x64

10

D883DC7ACC...64.exe

windows7-x64

3

D883DC7ACC...64.exe

windows10-2004-x64

3

DF5A394AD6...94.exe

windows7-x64

10

DF5A394AD6...94.exe

windows10-2004-x64

10

F1E546FE9D...FB.exe

windows7-x64

7

F1E546FE9D...FB.exe

windows10-2004-x64

7

F77DB63CBE...1F.exe

windows7-x64

10

F77DB63CBE...1F.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    132s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/08/2024, 20:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1D34D800AA3320DC17A5786F8EEC16EE.exe

  • Size

    69KB

  • MD5

    1d34d800aa3320dc17a5786f8eec16ee

  • SHA1

    4bcbded0cb8a68dc6d8141a31e0582e9641fa91e

  • SHA256

    852a2c4d2bb5e27d75ff76aee3e9d091e1aa67fa372cb2876e690ee32a351442

  • SHA512

    d28903222a0523ff56d7c63696fd49e5765c9f35cde7d225476a6d6b3e43859aaf15eea2eb0805d019d423282a8ee22e44456e50a6e6a0972b498ec07c7d2976

  • SSDEEP

    768:WNay907/9WUx4W1X2FB95msu9YW7rSLedQV19a7xMzVoWkV0iQ3Yg5hSqSr:WNZY/b92rnmfHfSLed41EeizV2uFr

Score
3/10
discovery

Malware Config

Signatures

  • Program crash 1 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\1D34D800AA3320DC17A5786F8EEC16EE.exe
    "C:\Users\Admin\AppData\Local\Temp\1D34D800AA3320DC17A5786F8EEC16EE.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:5044
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 5044 -s 396
      2⤵
      • Program crash
      PID:1276
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 5044 -ip 5044
    1⤵
      PID:4404

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads