00f556f93fabf6766d5f859556a008eab39a176ba3c979cb143ad118506c33f8 | Triage

Analysis

max time kernel
147s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20220414-en
submitted
24-05-2022 03:23

Sharing

Report Analysis Logs

General

Target

00f556f93fabf6766d5f859556a008eab39a176ba3c979cb143ad118506c33f8.exe
Size

361KB
MD5

7bd0e512edd2194c38864df24bbaa71d
SHA1

bc811c561cbde749b28f9f3b58f57b1ccc699f1a
SHA256

00f556f93fabf6766d5f859556a008eab39a176ba3c979cb143ad118506c33f8
SHA512

6f0ea99edf859f8a9fb58fd7cd23efcb7aa284323acb40f426c9eaa780f258c157f61b275ce4d24d359aa42b4c6bfcdb05d04d63acacf0631f8eeee0c837fb81

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4200 992 WerFault.exe 00f556f93fabf6766d5f859556a008eab39a176ba3c979cb143ad118506c33f8.exe

C:\Users\Admin\AppData\Local\Temp\00f556f93fabf6766d5f859556a008eab39a176ba3c979cb143ad118506c33f8.exe
"C:\Users\Admin\AppData\Local\Temp\00f556f93fabf6766d5f859556a008eab39a176ba3c979cb143ad118506c33f8.exe"
1⤵
PID:992
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 992 -s 360
  2⤵
  - Program crash
  PID:4200

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 992 -ip 992
1⤵
PID:4660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads