088c5da885515610c686cc06abff6d27022d37c6798b7b80ca66165ccc368ef9

Analysis

max time kernel
146s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
11/10/2023, 16:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

caff8240330f37671da2a1e294d5e6e2a5c1def99eda91e0864a38a1cf9cfb11.exe
Size

470KB
MD5

24aa7a6f4d895d142dae7d089506275e
SHA1

46455040e71ab3f38cb0801f9a2ac9c2788efe3c
SHA256

caff8240330f37671da2a1e294d5e6e2a5c1def99eda91e0864a38a1cf9cfb11
SHA512

60263934f4729607bff853883da351d748d7c2e6231cdbcb0326047c50c37e87e7d7ed1bd2f8746a17db18837b0afeb32549eae313ed08e4b266bb971b68b735
SSDEEP

6144:i6RUPCkJ4wHKgYs/XLZsKuADM9+eZ31MdJ2+ELaLF4d2U0lPC37G9C+ez:i7PFCwOs/7ZrEpB8U+C3o9C

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3660	1452	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\caff8240330f37671da2a1e294d5e6e2a5c1def99eda91e0864a38a1cf9cfb11.exe
"C:\Users\Admin\AppData\Local\Temp\caff8240330f37671da2a1e294d5e6e2a5c1def99eda91e0864a38a1cf9cfb11.exe"
1⤵
PID:1452
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1452 -s 1124
  2⤵
  - Program crash
  PID:3660

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 1452 -ip 1452
1⤵
PID:1412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1452-1-0x0000000002770000-0x0000000002870000-memory.dmp

Filesize
1024KB

Download
memory/1452-2-0x0000000004210000-0x0000000004260000-memory.dmp

Filesize
320KB

Download
memory/1452-3-0x0000000000400000-0x00000000025C8000-memory.dmp

Filesize
33.8MB

Download
memory/1452-4-0x0000000006C00000-0x0000000006C66000-memory.dmp

Filesize
408KB

Download
memory/1452-5-0x0000000000400000-0x00000000025C8000-memory.dmp

Filesize
33.8MB

Download
memory/1452-8-0x0000000006C70000-0x0000000007214000-memory.dmp

Filesize
5.6MB

Download
memory/1452-7-0x0000000004660000-0x0000000004670000-memory.dmp

Filesize
64KB

Download
memory/1452-6-0x0000000004660000-0x0000000004670000-memory.dmp

Filesize
64KB

Download
memory/1452-9-0x0000000007280000-0x00000000072E2000-memory.dmp

Filesize
392KB

Download
memory/1452-10-0x00000000072E0000-0x0000000007372000-memory.dmp

Filesize
584KB

Download
memory/1452-11-0x0000000074600000-0x0000000074DB0000-memory.dmp

Filesize
7.7MB

Download
memory/1452-12-0x0000000000400000-0x00000000025C8000-memory.dmp

Filesize
33.8MB

Download
memory/1452-13-0x0000000002770000-0x0000000002870000-memory.dmp

Filesize
1024KB

Download
memory/1452-14-0x0000000004210000-0x0000000004260000-memory.dmp

Filesize
320KB

Download
memory/1452-15-0x0000000000400000-0x00000000025C8000-memory.dmp

Filesize
33.8MB

Download
memory/1452-17-0x0000000004660000-0x0000000004670000-memory.dmp

Filesize
64KB

Download
memory/1452-18-0x0000000004660000-0x0000000004670000-memory.dmp

Filesize
64KB

Download
memory/1452-19-0x0000000004660000-0x0000000004670000-memory.dmp

Filesize
64KB

Download
memory/1452-20-0x0000000074600000-0x0000000074DB0000-memory.dmp

Filesize
7.7MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads