Overview

overview

3

Static

static

3

fa19deda57...16.exe

windows7-x64

3

fa19deda57...16.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28-12-2023 21:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fa19deda575b6fb9bf71c88803a25116.exe

  • Size

    25KB

  • MD5

    fa19deda575b6fb9bf71c88803a25116

  • SHA1

    412906d4ff54c9c78146afd8722dcc9c3ad4a06a

  • SHA256

    e7ccff00c8e799a85090a1f7a1556021cd4dda9f39774d988075aa2e45b48054

  • SHA512

    3acada775b4b6f0849b11d01d346fc0af030f025207e9e92b3ca57ea3c415d0e204f133b0b210595ff51f77b36046ef4cda4420173509b6834bebd4b0e2e18c1

  • SSDEEP

    768:1N+bPdeTYI1Xza9DcMjfQcnvRBFoBalk:z+bPdvI1XzIDcaQcv3Vlk

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\fa19deda575b6fb9bf71c88803a25116.exe
    "C:\Users\Admin\AppData\Local\Temp\fa19deda575b6fb9bf71c88803a25116.exe"
    1⤵
      PID:1828
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1828 -s 236
        2⤵
        • Program crash
        PID:4964
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 200 -p 1828 -ip 1828
      1⤵
        PID:212

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads