Analysis
-
max time kernel
149s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
12-12-2024 21:03
General
-
Target
2840-0-0x0000000000BF0000-0x0000000001280000-memory.exe
-
Size
6.6MB
-
MD5
3386767a06a73856d79e733fcd0c178b
-
SHA1
c1705721e126918b7d6930b92ecfbfed3f1b7f1c
-
SHA256
0ed53e7c640e9a13ca7907de16e08ae9756ddbbbb6a651c4b1f6f55fbe3513e2
-
SHA512
8e2e12f6ee0a24891904dc83feb2b34e36a4fae73596cbe56f004f351f66e3c8166ba92aab22cce885fc459edb735056012bdb2867adfe045e1e0c68efff5f5c
-
SSDEEP
3072:90fjOnMoFiVdgSlcqAEmrhzZRW/yWfugVIERZ7H4iMv+Q98X+B:rn5F+rcqY4/yWmWbb7HyvzqM
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\2840-0-0x0000000000BF0000-0x0000000001280000-memory.exe"C:\Users\Admin\AppData\Local\Temp\2840-0-0x0000000000BF0000-0x0000000001280000-memory.exe"1⤵
- System Location Discovery: System Language Discovery
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 5084 -s 2322⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 5084 -ip 50841⤵
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
6.6MB