Analysis
-
max time kernel
142s -
max time network
145s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
06-06-2023 07:44
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
ec2b24bfcea06334668b760932d678d569c92be0dceff25a662a250b07ec0209.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
ec2b24bfcea06334668b760932d678d569c92be0dceff25a662a250b07ec0209.dll
-
Size
1.2MB
-
MD5
342e0f577f9cebaaff9127e311bd5ba5
-
SHA1
31e525979b564fe170e923be60d5cb008982bb90
-
SHA256
ec2b24bfcea06334668b760932d678d569c92be0dceff25a662a250b07ec0209
-
SHA512
a066653c5c4a2e786bcfbcd35c277e4a710f9764a45f5142c96d4e8fce135e2142171338e29739b2cc1da9823254ee9f9b2d757a240d6a53b871920da23a2890
-
SSDEEP
24576:hLSd9kmW5Z/0L2s/lOvZm/K0s56BWIVMyaaO2HrOBV8eFc2zJdhWjtQ0:Kv51/lmasFxFmtf
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2580 3032 WerFault.exe 53
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\ec2b24bfcea06334668b760932d678d569c92be0dceff25a662a250b07ec0209.dll,#11⤵PID:3032
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -u -p 3032 -s 3282⤵
- Program crash
PID:2580
-
-
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -pss -s 444 -p 3032 -ip 30321⤵PID:5084