Analysis
-
max time kernel
93s -
max time network
98s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
09-10-2024 16:04
General
-
Target
8aab0afc3f58ba7443e9e82da83c6933ca3287fa348caef3d2c165da58d17c13N.exe
-
Size
468KB
-
MD5
ef0aa91b50489674a21d6c564bb9ea40
-
SHA1
2fdc9c84e6e54b0101f846b86c281eca832155f6
-
SHA256
8aab0afc3f58ba7443e9e82da83c6933ca3287fa348caef3d2c165da58d17c13
-
SHA512
c0d5d176480d0f815168c7d99c1df88e53ff3ed981691ec6b96b3cf9435cc05465cee9353255cb8adda3507c7fb3aaa349bb2949b88f87b28d89b7b77de985e5
-
SSDEEP
3072:4belogzaIf578bYEPzcfmbfD/n2DnsIH9wmyeQVsC65KkGh1uxjl7:4b4ocB787P4fmbfrabk65D21ux
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\8aab0afc3f58ba7443e9e82da83c6933ca3287fa348caef3d2c165da58d17c13N.exe"C:\Users\Admin\AppData\Local\Temp\8aab0afc3f58ba7443e9e82da83c6933ca3287fa348caef3d2c165da58d17c13N.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 984 -s 7202⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 984 -ip 9841⤵