18cf498cc68fafb22321be2d377408448adf3cd0938bfba6868e7eb3476eea50 | Triage

Analysis

max time kernel
165s
max time network
174s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
29-12-2023 18:21

Sharing

Report Analysis Logs

General

Target

004db7737105ea6bd66fa0f54a3a93df.exe
Size

101KB
MD5

004db7737105ea6bd66fa0f54a3a93df
SHA1

829b87387ecbec21fbf1ba70cf22e655e4810ed6
SHA256

18cf498cc68fafb22321be2d377408448adf3cd0938bfba6868e7eb3476eea50
SHA512

6bc9afdf9a4077d022458dd0d15d0a2387dc1e48c6328fe7a1538d3ce3ed0e21f5ac9adb7a612266084807fa520c08f56f05488bec927ff90e80e25a5f5fa142
SSDEEP

3072:AXZPXXU/kR5ZYQz8wh36E1vCP2LuogmnaHGhN:GZPn5pXhKE29oL1

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1856	1004	WerFault.exe	86

C:\Users\Admin\AppData\Local\Temp\004db7737105ea6bd66fa0f54a3a93df.exe
"C:\Users\Admin\AppData\Local\Temp\004db7737105ea6bd66fa0f54a3a93df.exe"
1⤵
PID:1004
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1004 -s 372
  2⤵
  - Program crash
  PID:1856

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 1004 -ip 1004
1⤵
PID:1412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads