Overview

overview

1

Static

static

1

winrar-x64-611.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    26s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    06-10-2024 13:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    winrar-x64-611.exe

  • Size

    3.3MB

  • MD5

    8a6217d94e1bcbabdd1dfcdcaa83d1b3

  • SHA1

    99b81b01f277540f38ea3e96c9c6dc2a57dfeb92

  • SHA256

    3023edb4fc3f7c2ebad157b182b62848423f6fa20d180b0df689cbb503a49684

  • SHA512

    a8f6f6fdfa9d754a577b7dd885a938fb9149f113baa2afb6352df622cdb73242175a06cd567e971fd3de93a126ba05b78178d5d512720d8fdb87ececce2cbf54

  • SSDEEP

    98304:mZjOBfKqY3fhMBexKTvsCHBviBh2GB8y0mb5:mZZ7fhMB2ovFNiKGhJ

Score
1/10

Malware Config

Signatures

  • Modifies registry class 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\winrar-x64-611.exe
    "C:\Users\Admin\AppData\Local\Temp\winrar-x64-611.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3484
  • C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
    "C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4084
  • C:\Windows\system32\werfault.exe
    werfault.exe /h /shared Global\838da7e40eae4890b44eead5f57c3891 /t 4612 /p 3484
    1⤵
      PID:5072

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
      Filesize

      10KB

      MD5

      30f9f69bd4cb3ca8ed4af465e6bf3b72

      SHA1

      1f7bf3625d683c1af38485d1eb39152949648749

      SHA256

      fbb114871abc3901711a5f204cb370f1cc1602ad89fa0c8155288ec72e4eaf36

      SHA512

      ae96746716d0b47912c191ca52db48ee40aca9591444c1f0ffbc913346be1fff1e9f71c6e66cb4c175fd308e04a504367dd56bf84920f94c65142cd8508258c2

      Download Submit