b03516b412ea911626c502d6a97b1b78f80329b26f2306ced4f9b0bbbfd41d6f | Triage

Analysis

max time kernel
142s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
09/07/2023, 07:54

Sharing

Report Analysis Logs

General

Target

9e8f90fa6f1e79exeexeexeex.exe
Size

188KB
MD5

9e8f90fa6f1e7991a639c969078ffdb7
SHA1

4fe019efb3b77cdbf62c04886644d71997ca1784
SHA256

b03516b412ea911626c502d6a97b1b78f80329b26f2306ced4f9b0bbbfd41d6f
SHA512

2981377fe3d24c0bc46591cd963cc1c0f07af6d3d9ffaa2026cc5cbb50de798fe182567a373e98f206d02c43c1ea7320ab1efc0be648649cd4f2f9c9d5a43325
SSDEEP

3072:p/EPd9PhMBQUddmx3dtO0cPlDJBFrC750mFzF:p/8hMBQqd1rPpTFrtmL

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4740	4204	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\9e8f90fa6f1e79exeexeexeex.exe
"C:\Users\Admin\AppData\Local\Temp\9e8f90fa6f1e79exeexeexeex.exe"
1⤵
PID:4204
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4204 -s 224
  2⤵
  - Program crash
  PID:4740

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 4204 -ip 4204
1⤵
PID:3496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4204-133-0x0000000000400000-0x000000000042F000-memory.dmp

Filesize
188KB

Download