0e30a75545d977550e352d691fbfda4f9cb97655be53b107998ff43db67a37bd | Triage

Analysis

max time kernel
146s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
13/10/2023, 20:32

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

NEAS.9a2c0cfa7394ae72df09823b354bd710.exe
Size

262KB
MD5

9a2c0cfa7394ae72df09823b354bd710
SHA1

4aeb1fd6590db9168822614292885e74c5dafb64
SHA256

0e30a75545d977550e352d691fbfda4f9cb97655be53b107998ff43db67a37bd
SHA512

6f4d34f184fc96d31e5f7171e9115cb4a1713c1b347555a243b95b05311e297b34afcc54ce7d2ab53f6b5d48fa300948627d2996420697cbeafbbdc67c987460
SSDEEP

1536:zdD2unvz0Eg9stAWpSYje5cU7zA4bmlpWmm:JSW3tAW4Yjevp0wmm

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4228	556	WerFault.exe	84

C:\Users\Admin\AppData\Local\Temp\NEAS.9a2c0cfa7394ae72df09823b354bd710.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.9a2c0cfa7394ae72df09823b354bd710.exe"
1⤵
PID:556
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 556 -s 844
  2⤵
  - Program crash
  PID:4228

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 556 -ip 556
1⤵
PID:4904

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/556-0-0x00000000009E0000-0x0000000000A28000-memory.dmp

Filesize
288KB

Download
memory/556-1-0x0000000074D20000-0x00000000754D0000-memory.dmp

Filesize
7.7MB

Download
memory/556-2-0x00000000053E0000-0x000000000547C000-memory.dmp

Filesize
624KB

Download
memory/556-3-0x0000000074D20000-0x00000000754D0000-memory.dmp

Filesize
7.7MB

Download