Overview

overview

10

Static

static

10

1d90d6c35e...9c.exe

windows7-x64

10

1d90d6c35e...9c.exe

windows10-2004-x64

10

1dbfa6282e...68.exe

windows7-x64

8

1dbfa6282e...68.exe

windows10-2004-x64

8

1dc47906f1...32.exe

windows7-x64

10

1dc47906f1...32.exe

windows10-2004-x64

3

1df5615c53...d6.exe

windows7-x64

10

1df5615c53...d6.exe

windows10-2004-x64

10

1e02f6a6c6...83.exe

windows7-x64

7

1e02f6a6c6...83.exe

windows10-2004-x64

7

1e055435ef...e4.exe

windows7-x64

10

1e055435ef...e4.exe

windows10-2004-x64

10

1e320ed242...cb.exe

windows7-x64

10

1e320ed242...cb.exe

windows10-2004-x64

10

1ec4b8acdc...65.exe

windows7-x64

1

1ec4b8acdc...65.exe

windows10-2004-x64

1

1ecd5f6fdf...82.exe

windows7-x64

10

1ecd5f6fdf...82.exe

windows10-2004-x64

10

1f0343adab...d3.exe

windows7-x64

10

1f0343adab...d3.exe

windows10-2004-x64

10

1f1f2a5e82...ba.exe

windows7-x64

10

1f1f2a5e82...ba.exe

windows10-2004-x64

10

1f2f396008...f5.exe

windows7-x64

10

1f2f396008...f5.exe

windows10-2004-x64

10

1f824bf7c7...67.exe

windows7-x64

10

1f824bf7c7...67.exe

windows10-2004-x64

10

1fb433aec1...59.exe

windows7-x64

10

1fb433aec1...59.exe

windows10-2004-x64

10

1fe86f0bbb...3e.exe

windows7-x64

10

1fe86f0bbb...3e.exe

windows10-2004-x64

10

201b2bf97d...42.exe

windows7-x64

10

201b2bf97d...42.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    37s
  • max time network
    42s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/03/2025, 20:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1dc47906f130f9bcf0c314005fc34842a4c89f93b18acfbc2fcd8ff856ceca32.exe

  • Size

    1.8MB

  • MD5

    793d4f49460d39ce07b9b1f4fbae913f

  • SHA1

    0f673b4d57a55fe5c7ad9f575cb04e31a1fd2ac7

  • SHA256

    1dc47906f130f9bcf0c314005fc34842a4c89f93b18acfbc2fcd8ff856ceca32

  • SHA512

    7dc26a5651a95fc2c23174d6049bdb24e456f53fb08654ddf4984ee26d461b3c4186b70e3eb700088e9098a2d1449c77e5023bb872b933ed50cab7ed1e48ab71

  • SSDEEP

    24576:PD39dlfGQrFUspugRNJI2DJnUw9W/j+BeKJWqwH6J:PF+QrFUBgq25eKu6J

Score
3/10
discovery

Malware Config

Signatures

  • Program crash 1 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\1dc47906f130f9bcf0c314005fc34842a4c89f93b18acfbc2fcd8ff856ceca32.exe
    "C:\Users\Admin\AppData\Local\Temp\1dc47906f130f9bcf0c314005fc34842a4c89f93b18acfbc2fcd8ff856ceca32.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:5092
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 5092 -s 440
      2⤵
      • Program crash
      PID:5408
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 456 -p 5092 -ip 5092
    1⤵
      PID:5108

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/5092-0-0x0000000075082000-0x0000000075083000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5092-1-0x0000000075080000-0x0000000075631000-memory.dmp

      Filesize

      5.7MB

      Download

    • memory/5092-2-0x0000000075080000-0x0000000075631000-memory.dmp

      Filesize

      5.7MB

      Download