Analysis
-
max time kernel
486s -
max time network
489s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
26-10-2022 21:56
Behavioral task
behavioral1
Sample
25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f_unpacked.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f_unpacked.exe
Resource
win10v2004-20220812-en
General
-
Target
25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f_unpacked.exe
-
Size
905KB
-
MD5
caea68a0bc6a5e6f678f0242e84ff61a
-
SHA1
f3de5be1413d9bbf3eabc1c113bc8dd07b71179a
-
SHA256
25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f
-
SHA512
56f03c58c8e8a488df7b031684974b1a7df5ab902f006989d045b2ee04627def7385e44c1f6ad8298d6747c1945f28282013aa58ef30fea81dda24b0914b0095
-
SSDEEP
12288:DSXbvF18V+l1EtQxbT84WvSn/gSKx6wCPFWoTwCT/VOUFYsfSmII07:DSp170tK/PFWmAUp/
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 4972 4432 WerFault.exe 25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f_unpacked.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f_unpacked.exe"C:\Users\Admin\AppData\Local\Temp\25c494be7cc883f161e94a308f65d6a4cac7db25bf3563c1ebe1488fa7526a3f_unpacked.exe"1⤵
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -u -p 4432 -s 1482⤵
- Program crash
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -pss -s 424 -p 4432 -ip 44321⤵