Analysis
-
max time kernel
151s -
max time network
146s -
platform
windows10-2004_x64 -
resource
win10v2004-20231127-en -
resource tags
arch:x64arch:x86image:win10v2004-20231127-enlocale:en-usos:windows10-2004-x64system -
submitted
13/12/2023, 23:57
Behavioral task
behavioral1
Sample
6468663feb3d931fd197bb1355479967d6d797decfa0328bb283bfa3f6953165.exe
Resource
win10v2004-20231127-en
1 signatures
150 seconds
General
-
Target
6468663feb3d931fd197bb1355479967d6d797decfa0328bb283bfa3f6953165.exe
-
Size
1.6MB
-
MD5
5de2caac6d20a6d8bafdf1a1b9121c13
-
SHA1
b652ada84bfd85a9513fad6f04b53937a8adb621
-
SHA256
6468663feb3d931fd197bb1355479967d6d797decfa0328bb283bfa3f6953165
-
SHA512
df3490b68a53a5b5e559550d3a7f26fb1a6c4fe61b4eedae8c2e049f7fdf1e965cb7952309b3e20e819ad16cd6621187c972d37e099f208f1edd3f8e67bf302b
-
SSDEEP
49152:80ceOGgUYYEmluRKYoFh4kGWusbQnIyDi1E1uonTKi/OjCCNG:1XOGgUYC4RKXFhrusbaDkE1u
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 5024 2188 WerFault.exe 85
Processes
-
C:\Users\Admin\AppData\Local\Temp\6468663feb3d931fd197bb1355479967d6d797decfa0328bb283bfa3f6953165.exe"C:\Users\Admin\AppData\Local\Temp\6468663feb3d931fd197bb1355479967d6d797decfa0328bb283bfa3f6953165.exe"1⤵PID:2188
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2188 -s 5642⤵
- Program crash
PID:5024
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2188 -ip 21881⤵PID:2692