eebeb81ad02564d503e0ab8446192d50582c68b0e8a17048e9fa77912e1dc737 | Triage

Analysis

max time kernel
157s
max time network
162s
platform
windows10-2004_x64
resource
win10v2004-20220414-en
submitted
30-06-2022 23:42

Sharing

Report Analysis Logs

General

Target

eebeb81ad02564d503e0ab8446192d50582c68b0e8a17048e9fa77912e1dc737.exe
Size

1.1MB
MD5

0dac9f066ea50209ff050ee641116013
SHA1

a85984794254166cc11cf34a20c125893b61e9fd
SHA256

eebeb81ad02564d503e0ab8446192d50582c68b0e8a17048e9fa77912e1dc737
SHA512

8469e7a7310ecfecc9ef5afb5b12000b4d3a08865d0d9d0a94bfec612632ff3540bed3d059d62d3fbde11ffeb13e56412e46d9bdd8335a4c4e1cd31d458bca17

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

668 2820 WerFault.exe eebeb81ad02564d503e0ab8446192d50582c68b0e8a17048e9fa77912e1dc737.exe

C:\Users\Admin\AppData\Local\Temp\eebeb81ad02564d503e0ab8446192d50582c68b0e8a17048e9fa77912e1dc737.exe
"C:\Users\Admin\AppData\Local\Temp\eebeb81ad02564d503e0ab8446192d50582c68b0e8a17048e9fa77912e1dc737.exe"
1⤵
PID:2820

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 2820 -s 428
2⤵
- Program crash
PID:668

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 468 -p 2820 -ip 2820
1⤵
PID:2412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...