f93a1eefdb11129e1986f517145f1f32571b81aba723ee9eb698cf8064f8a328 | Triage

Analysis

max time kernel
179s
max time network
184s
platform
windows10-2004_x64
resource
win10v2004-20220414-en
submitted
07-05-2022 21:29

Sharing

Report Analysis Logs

General

Target

1948-55-0x00000000003C0000-0x00000000003CE000-memory.dll
Size

56KB
MD5

0b9fbcd8cfc70bb8899725591492aa4c
SHA1

dd2452990270db83ac5b0fec6e7e349b8c857f8b
SHA256

f93a1eefdb11129e1986f517145f1f32571b81aba723ee9eb698cf8064f8a328
SHA512

ad7c6ef6cd1fb8dedc8e0a5d78379e46d2b65debf99c0222e52faf96e0374d582dab0a9d4cb9d741e64aa8a76da928aeb83b4460b21f89141f760ee6ebe98793

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4272 4516 WerFault.exe rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1948-55-0x00000000003C0000-0x00000000003CE000-memory.dll,#1
1⤵
PID:4516

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 4516 -s 224
2⤵
- Program crash
PID:4272

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 408 -p 4516 -ip 4516
1⤵
PID:620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads