Analysis
-
max time kernel
90s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system -
submitted
28/10/2022, 18:30
Static task
static1
Behavioral task
behavioral1
Sample
70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe
Resource
win10v2004-20220901-en
General
-
Target
70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe
-
Size
245KB
-
MD5
01751f7f09ef042a180144b6761a35d6
-
SHA1
2f2222293af134db74fc0a356c14f6818f53f84b
-
SHA256
70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9
-
SHA512
b8e4f690e273e0c38f4d1d098ef275dc2cfa1676261ae15b5e4376a565a537f3245081b89c2dfc777bdfbbcd67c995387ad454b2445d7a6108040e55c5dfae06
-
SSDEEP
3072:TBucIy5lEaANR4Cpw5sANR4Cpw5RCpw5RCpw5sANR4Cpw5H:TBp/5lLy1w5sy1w5Kw5Kw5sy1w5H
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2164 1260 WerFault.exe 80
Processes
-
C:\Users\Admin\AppData\Local\Temp\70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe"C:\Users\Admin\AppData\Local\Temp\70c82c1f3b11e0758a71eb3c13d0fedc9f37e5e5717473ebaf8adc17f5d666d9.exe"1⤵PID:1260
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1260 -s 3002⤵
- Program crash
PID:2164
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 464 -p 1260 -ip 12601⤵PID:4988