356bbcec7867f89555b633c6764c082511178036046c5c8206713bdd8c4724e8 | Triage

Analysis

max time kernel
91s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20220414-en
submitted
27-06-2022 00:15

Sharing

Report Analysis Logs

General

Target

356bbcec7867f89555b633c6764c082511178036046c5c8206713bdd8c4724e8.exe
Size

992KB
MD5

a4bb662d473fbfff6180e3ff6a3b5d74
SHA1

246e05cc59947ccf7157513c970b71874cb29c27
SHA256

356bbcec7867f89555b633c6764c082511178036046c5c8206713bdd8c4724e8
SHA512

ba894c67f29774b478017a732004ea280bfb3591b418adb88e6e0c40a281aa1ac70e3dceb00225a05073a536769f67f8ac8c609e31ce6d2a8a2ed9a7847d1292

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4944 2636 WerFault.exe 356bbcec7867f89555b633c6764c082511178036046c5c8206713bdd8c4724e8.exe

C:\Users\Admin\AppData\Local\Temp\356bbcec7867f89555b633c6764c082511178036046c5c8206713bdd8c4724e8.exe
"C:\Users\Admin\AppData\Local\Temp\356bbcec7867f89555b633c6764c082511178036046c5c8206713bdd8c4724e8.exe"
1⤵
PID:2636

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 2636 -s 520
2⤵
- Program crash
PID:4944

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 176 -p 2636 -ip 2636
1⤵
PID:3612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...