Analysis
-
max time kernel
160s -
max time network
170s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
07-11-2022 12:13
Static task
static1
Behavioral task
behavioral1
Sample
7a56b95e42d239933480f045cbe97bc7fcb44db980bd208c3bdb802aaaa64944.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
7a56b95e42d239933480f045cbe97bc7fcb44db980bd208c3bdb802aaaa64944.exe
Resource
win10v2004-20220812-en
General
-
Target
7a56b95e42d239933480f045cbe97bc7fcb44db980bd208c3bdb802aaaa64944.exe
-
Size
390KB
-
MD5
08d15fc82786af0f9f02df94b49e1f82
-
SHA1
c170fe9fd652695073285b86786bf744c5c1a0d1
-
SHA256
7a56b95e42d239933480f045cbe97bc7fcb44db980bd208c3bdb802aaaa64944
-
SHA512
a7fd2969b0e5d87a692fa2e986d0b76de982dd326db5d597ef6c22da5fb56747558ce434933efa6dfdaab1e62c3da386baa5fc8800da77c8179fd07f7608ad37
-
SSDEEP
6144:XqwD+X1xQatU+1CEJp4XEt8l3aw9Y6zfJvkeitTDYWMtrDVmCfNuI2RINhoDPnr:ZO1xm+QoK0t4K3gCTDYWGrYzt+NST
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 4644 2596 WerFault.exe 79
Processes
-
C:\Users\Admin\AppData\Local\Temp\7a56b95e42d239933480f045cbe97bc7fcb44db980bd208c3bdb802aaaa64944.exe"C:\Users\Admin\AppData\Local\Temp\7a56b95e42d239933480f045cbe97bc7fcb44db980bd208c3bdb802aaaa64944.exe"1⤵PID:2596
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2596 -s 5642⤵
- Program crash
PID:4644
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 2596 -ip 25961⤵PID:2244