Analysis
-
max time kernel
138s -
max time network
142s -
platform
windows10-2004_x64 -
resource
win10v2004-20231127-en -
resource tags
arch:x64arch:x86image:win10v2004-20231127-enlocale:en-usos:windows10-2004-x64system -
submitted
13/12/2023, 23:37
Behavioral task
behavioral1
Sample
ef6ed73415a236df5f38d8ddbf9abea50df6abf1023cffb0f117c58bd17dc243.exe
Resource
win10v2004-20231127-en
1 signatures
150 seconds
General
-
Target
ef6ed73415a236df5f38d8ddbf9abea50df6abf1023cffb0f117c58bd17dc243.exe
-
Size
1.6MB
-
MD5
424179d121334d251634b7c78c76d46c
-
SHA1
f61321c06ff7910abf578d7763a0dd45c77113ee
-
SHA256
ef6ed73415a236df5f38d8ddbf9abea50df6abf1023cffb0f117c58bd17dc243
-
SHA512
7e6fe425bfc5cfa858f9136f8edaf84692cb63d0138f964d079b1045c6d9906ace13c6151484d27b485bf6e34ee5219bd141ef2d7dd326f093bbb428119135dc
-
SSDEEP
49152:80ceOGgUYYEmluRKYoFh4kGWusbQnIyDi1E1uonTKi/OjCCNG:1XOGgUYC4RKXFhrusbaDkE1u
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 3628 4140 WerFault.exe 85
Processes
-
C:\Users\Admin\AppData\Local\Temp\ef6ed73415a236df5f38d8ddbf9abea50df6abf1023cffb0f117c58bd17dc243.exe"C:\Users\Admin\AppData\Local\Temp\ef6ed73415a236df5f38d8ddbf9abea50df6abf1023cffb0f117c58bd17dc243.exe"1⤵PID:4140
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4140 -s 5642⤵
- Program crash
PID:3628
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4140 -ip 41401⤵PID:4000