18db52244a8064027755b3bf1105d58785d2b8ff88caeb35b5769384bdf2e62d | Triage

Analysis

max time kernel
106s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
10/01/2023, 01:49

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

827aaee847a8b265c0d05e6385ca60fe670420b6.exe
Size

412KB
MD5

6bcfa87a213c05f685669b07652c8941
SHA1

827aaee847a8b265c0d05e6385ca60fe670420b6
SHA256

18db52244a8064027755b3bf1105d58785d2b8ff88caeb35b5769384bdf2e62d
SHA512

70544c028de33ca621ad06ec9afcaad39b58279d224bdd07cb39b5abd03fa76d139fb1ffc5d2db35a8ea100601428155a3461ac0194b88565fb7d9d9e39681b2
SSDEEP

12288:Z1AZ/3fUTA/YEywcSc6MgnyRYeCY/YGk:LAZ/M25wSczKyuybk

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
692	1564	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\827aaee847a8b265c0d05e6385ca60fe670420b6.exe
"C:\Users\Admin\AppData\Local\Temp\827aaee847a8b265c0d05e6385ca60fe670420b6.exe"
1⤵
PID:1564
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1564 -s 248
  2⤵
  - Program crash
  PID:692

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 1564 -ip 1564
1⤵
PID:2496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads