Analysis
-
max time kernel
91s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
10/07/2022, 07:19
Static task
static1
Behavioral task
behavioral1
Sample
1756-54-0x0000000180000000-0x0000000180009000-memory.dll
Resource
win7-20220414-en
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
1756-54-0x0000000180000000-0x0000000180009000-memory.dll
Resource
win10v2004-20220414-en
0 signatures
0 seconds
General
-
Target
1756-54-0x0000000180000000-0x0000000180009000-memory.dll
-
Size
36KB
-
MD5
c2bab9b7a0d85653416316f55c82541b
-
SHA1
939e617421037a58870e52d29bf38e292105e3ff
-
SHA256
46f32ba015b5ae66e8e0e69e5b7a965cdb5999a7406bd844743caa7f124054b1
-
SHA512
c80ae7e662d54c570eda87293a9d1e0e3eb632e059d08673188d52c08b80177051b197b3a0d6d303ad61c35acd9909d06d23d9abf263db6da7e16b79d7fca01a
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 3684 5068 WerFault.exe 79
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\1756-54-0x0000000180000000-0x0000000180009000-memory.dll,#11⤵PID:5068
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -u -p 5068 -s 2402⤵
- Program crash
PID:3684
-
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -pss -s 432 -p 5068 -ip 50681⤵PID:4424