Analysis
-
max time kernel
139s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
22-05-2022 03:12
Static task
static1
Behavioral task
behavioral1
Sample
tmp.exe
Resource
win7-20220414-en
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
tmp.exe
Resource
win10v2004-20220414-en
0 signatures
0 seconds
General
-
Target
tmp.exe
-
Size
7KB
-
MD5
64ffccc75e82eb7abb8a53f6a431f7a2
-
SHA1
56bc4aa2b58ba8538102da10a2206326aaa5f72d
-
SHA256
be18535af226a702c71031342038b0f22f09cf251f66b6b4ae5de08206053007
-
SHA512
f594fd7fcfbc79717c659b43812483dc5a3ca6a6da31140bed35e91e396bdbc43ea64da074fcfb1e309c10be9af1df7e3f087d13e6dfbc4ba908bfe6aeaa86fe
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 2820 4316 WerFault.exe tmp.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\tmp.exe"C:\Users\Admin\AppData\Local\Temp\tmp.exe"1⤵
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -u -p 4316 -s 1442⤵
- Program crash
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -pss -s 424 -p 4316 -ip 43161⤵