e3d93b0f0885a5bf2431c6047893e6e8f0095c1204611d36c64ffbbca8208b39 | Triage

Analysis

max time kernel
147s
max time network
135s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
29-12-2023 23:44

Sharing

Report Analysis Logs

General

Target

075bcd21364c2de55c5908ab2d22dae7.exe
Size

64KB
MD5

075bcd21364c2de55c5908ab2d22dae7
SHA1

6a401d6bfb9b3890ccb313811c25bb2364a4f0ed
SHA256

e3d93b0f0885a5bf2431c6047893e6e8f0095c1204611d36c64ffbbca8208b39
SHA512

c88be327ba366e7fe24eda489d647e849b11238ce1d52f47eb30f7bceda33b1fa3e3fd43f268a3c13e6f4823dd33a3f956b0c640a4e753f5363de0d6b396b49c
SSDEEP

1536:ZLiSTK29pwydSeqEHGWnxII3ZWGeXmg0k+8:ZLiST98+qzzI3ezR

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3344	1196	WerFault.exe	17

C:\Users\Admin\AppData\Local\Temp\075bcd21364c2de55c5908ab2d22dae7.exe
"C:\Users\Admin\AppData\Local\Temp\075bcd21364c2de55c5908ab2d22dae7.exe"
1⤵
PID:1196
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1196 -s 220
  2⤵
  - Program crash
  PID:3344

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 1196 -ip 1196
1⤵
PID:560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1196-0-0x0000000000C50000-0x0000000000C78000-memory.dmp

Filesize
160KB

Download
memory/1196-1-0x0000000000C50000-0x0000000000C78000-memory.dmp

Filesize
160KB

Download