Analysis
-
max time kernel
155s -
max time network
167s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
21-10-2022 00:54
Static task
static1
Behavioral task
behavioral1
Sample
93ac352128eba3f8cc917eac37c6d7e2398bf96a29670a689ae9d5ba9592ec08.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
93ac352128eba3f8cc917eac37c6d7e2398bf96a29670a689ae9d5ba9592ec08.exe
Resource
win10v2004-20220812-en
General
-
Target
93ac352128eba3f8cc917eac37c6d7e2398bf96a29670a689ae9d5ba9592ec08.exe
-
Size
144KB
-
MD5
5f3174e60937368000cca1a6de660160
-
SHA1
2b62605fbbcaed2c63804b9706115cfac082a105
-
SHA256
93ac352128eba3f8cc917eac37c6d7e2398bf96a29670a689ae9d5ba9592ec08
-
SHA512
805243c0e77e32b492ad34ffa456d53ecfc8f1cb5d4a5bf04285c670ce6a183992c801b898f442e067114d1bbe60f8679a8f3be0e02f07bc42ab7150083b2938
-
SSDEEP
1536:bk7oNYkwxjEQE+v6Le5pYhOxYTozxm6z1a/I+Uttmd:I7OgD/z1a/FUttmd
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2492 4324 WerFault.exe 81
Processes
-
C:\Users\Admin\AppData\Local\Temp\93ac352128eba3f8cc917eac37c6d7e2398bf96a29670a689ae9d5ba9592ec08.exe"C:\Users\Admin\AppData\Local\Temp\93ac352128eba3f8cc917eac37c6d7e2398bf96a29670a689ae9d5ba9592ec08.exe"1⤵PID:4324
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4324 -s 4402⤵
- Program crash
PID:2492
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 4324 -ip 43241⤵PID:1952