8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3

Analysis

max time kernel
91s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
23-11-2022 15:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3.exe
Size

358KB
MD5

2aaa67964b4e20b25ee2c8a124d1bc8e
SHA1

2c02c42d085d2b384d1d3d15a954606d9c157976
SHA256

8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3
SHA512

4db2e5b4bc8384b26177a665c5f4d3a2481e9f090bfad66a0803ec3a554831fc9ae919033c2a366a410a29503612451d75395a6ec157edc7eee2df053a4ed7b9
SSDEEP

6144:wXY1jqepIGuWZ+I2igbFdvywrZcZV7LjJoxGq6IE55wxg:wXY1jqe6Gj2hFdvyGcZ1FYGq61Gg

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

3272 4884 WerFault.exe 8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3.exe

pid	pid_target	process	target process
3272	4884	WerFault.exe	8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3.exe

C:\Users\Admin\AppData\Local\Temp\8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3.exe
"C:\Users\Admin\AppData\Local\Temp\8957f9e68f7d05522e9f0044931e184e0f919e2405924a945700d143eb010cc3.exe"
1⤵
PID:4884
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4884 -s 272
  2⤵
  - Program crash
  PID:3272

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 4884 -ip 4884
1⤵
PID:1324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4884-132-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-135-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-139-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-145-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-143-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-141-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-153-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-159-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-163-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-161-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-157-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-167-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-169-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-171-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-165-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-155-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-151-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-149-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-147-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-175-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-183-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-185-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-181-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-187-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-179-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-193-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-195-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-191-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-189-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-177-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-173-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-137-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-133-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download
memory/4884-328-0x00000000005AB000-0x00000000005AD000-memory.dmp

Filesize
8KB

Download
memory/4884-329-0x0000000000560000-0x00000000005CC000-memory.dmp

Filesize
432KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads