Analysis

  • max time kernel
    76s
  • max time network
    145s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/03/2023, 08:14

General

  • Target

    2712-138-0x0000000000400000-0x000000000044C000-memory.exe

  • Size

    304KB

  • MD5

    f4134b262d1c67dd7d7fd033239b4865

  • SHA1

    c8447bfa04419131606146d9b7c8ed0e475c91aa

  • SHA256

    2fd1748615f34449f9971fdc96dc786e7d2ae3abb156b749f957e3743d5d3600

  • SHA512

    ecabd94ecccbfb6de9de5117d4fef8a787dc4f8472e33ecf7ed51da6fefa08707132a710ec8dec88b90220d338ffcae923168572cec016cee2ca592238467b2a

  • SSDEEP

    3072:VfKYprNoVUE3Hn5PcN6ugTCIKmO8YUAWDE/Rp9sNFGH52c:RKYprOVUuGNYDlO8YI4Zp9sX

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2712-138-0x0000000000400000-0x000000000044C000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\2712-138-0x0000000000400000-0x000000000044C000-memory.exe"
    1⤵
      PID:3464
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3464 -s 216
        2⤵
        • Program crash
        PID:1852
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 364 -p 3464 -ip 3464
      1⤵
        PID:3320

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads