Analysis
-
max time kernel
145s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20220721-en -
resource tags
arch:x64arch:x86image:win10v2004-20220721-enlocale:en-usos:windows10-2004-x64system -
submitted
02-08-2022 02:58
Static task
static1
Behavioral task
behavioral1
Sample
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe
Resource
win7-20220718-en
17 signatures
150 seconds
Behavioral task
behavioral2
Sample
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe
Resource
win10v2004-20220721-en
1 signatures
150 seconds
General
-
Target
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe
-
Size
551KB
-
MD5
3454232330370e6c035524983677ac69
-
SHA1
45c6624631a989e37f91816021c97d80b3060de5
-
SHA256
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531
-
SHA512
287d84bf8b3476a7d426f180ed601533524d8f0f441237db16fc0421c8d51a6e0d2cf63708328eac82e10797a78a376868ce8582239d1d740671bc1be67055be
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 2600 4440 WerFault.exe 5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe"C:\Users\Admin\AppData\Local\Temp\5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe"1⤵PID:4440
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4440 -s 2282⤵
- Program crash
PID:2600
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4440 -ip 44401⤵PID:4596