Analysis
-
max time kernel
142s -
max time network
111s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
26-12-2023 08:16
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
5f132e3ebe3d5818ca18e850c4aeceaf.exe
Resource
win7-20231215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
5f132e3ebe3d5818ca18e850c4aeceaf.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
5f132e3ebe3d5818ca18e850c4aeceaf.exe
-
Size
1.2MB
-
MD5
5f132e3ebe3d5818ca18e850c4aeceaf
-
SHA1
520ebe079200127fe9749f6b86b90f79c3bc491f
-
SHA256
8d326ee8c6e3c3e1472b1c2b1fd2fa55751f632b7f833feff3ea3dc73bf188f4
-
SHA512
f550323d479fc6c337805698f529b4542f8112045b6546f63673340352821a2f68fd917bf9c4cd42401a078f7c629b7576575197cf7f51d5ed74c1598c617196
-
SSDEEP
24576:IqdxeOU19wTWoKLAGPP7atIG5AglVLYj5+g2/TJo/gcbLV:ItEKc4rG5AglV8F+//Tq/gcfV
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2536 2356 WerFault.exe 14
Processes
-
C:\Users\Admin\AppData\Local\Temp\5f132e3ebe3d5818ca18e850c4aeceaf.exe"C:\Users\Admin\AppData\Local\Temp\5f132e3ebe3d5818ca18e850c4aeceaf.exe"1⤵PID:2356
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2356 -s 5042⤵
- Program crash
PID:2536
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 2356 -ip 23561⤵PID:4956