Analysis
-
max time kernel
142s -
max time network
156s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system -
submitted
23/08/2023, 09:38
Behavioral task
behavioral1
Sample
ebf27af2cfef8fcd7b5691f4cc532ea8e5bfcd5036c77445e07ef78d1ae77472.exe
Resource
win7-20230712-en
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
ebf27af2cfef8fcd7b5691f4cc532ea8e5bfcd5036c77445e07ef78d1ae77472.exe
Resource
win10v2004-20230703-en
1 signatures
150 seconds
General
-
Target
ebf27af2cfef8fcd7b5691f4cc532ea8e5bfcd5036c77445e07ef78d1ae77472.exe
-
Size
539KB
-
MD5
32da29aad44103cf1b8a7077da3403b3
-
SHA1
c70762caa9efbfcae3f86f6ee78548fbdcfe8420
-
SHA256
ebf27af2cfef8fcd7b5691f4cc532ea8e5bfcd5036c77445e07ef78d1ae77472
-
SHA512
7fa96ff7565798d3abb4f9671d2676ebb3bd45a271008c6e0654eed6a9be5529cd8dcc959bc36696f2e28c2160cd7100449f7598e69100fa9c0ee3dc2de27c36
-
SSDEEP
6144:vtTB9eOWnaWYkq1VN7BxDrU9J+klKnevBHrhpTrkt52E1qXSBzkk4L30Mm9:vtTGOoaW+nGlKevBU1qhk4zw9
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 4824 3800 WerFault.exe 80
Processes
-
C:\Users\Admin\AppData\Local\Temp\ebf27af2cfef8fcd7b5691f4cc532ea8e5bfcd5036c77445e07ef78d1ae77472.exe"C:\Users\Admin\AppData\Local\Temp\ebf27af2cfef8fcd7b5691f4cc532ea8e5bfcd5036c77445e07ef78d1ae77472.exe"1⤵PID:3800
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3800 -s 2162⤵
- Program crash
PID:4824
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 3800 -ip 38001⤵PID:5044