78279ac671bb144d058bc59eb5d89a6446ceee2cdcaf3d6bbe00a23e15abf0b2

Resubmissions

18-01-2023 14:25

max time kernel
148s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
18-01-2023 14:25

Target

TA579_20220117/python3.dll
Size

63KB
MD5

e0ca371cb1e69e13909bfbd2a7afc60e
SHA1

955c31d85770ae78e929161d6b73a54065187f9e
SHA256

abb50921ef463263acd7e9be19862089045074ea332421d82e765c5f2163e78a
SHA512

dd5a980ba72e4e7be81b927d140e408ad06c7be51b4f509737faee5514e85a42d47518213da1c3e77c25f9bd2eb2109fca173d73d710ff57e6a88a2ff971d0b4
SSDEEP

768:5n8LeBLeeFtp5V1BfO2yvSk70QZF1nEyjnskQkr/RFB1qucwdBeCw0myou6ZwJq2:5nwewnvtjnsfwL5I4Q0h7SyD0PxW

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

2764 4624 WerFault.exe rundll32.exe

pid	pid_target	process	target process
2764	4624	WerFault.exe	rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\TA579_20220117\python3.dll,#1
1⤵
PID:4624

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 4624 -s 380
2⤵
- Program crash
PID:2764

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 188 -p 4624 -ip 4624
1⤵
PID:3536