f3dabc2d14b7c5042eb84be946ec769e4f0901e1ce593fdf1cadce1e000fada7 | Triage

Analysis

max time kernel
148s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30/12/2023, 08:58

Sharing

Report Analysis Logs

General

Target

13e8ea77f3646674f82706eb090919c4.exe
Size

116KB
MD5

13e8ea77f3646674f82706eb090919c4
SHA1

b7c80182284ba01c7dd7f636524e5a60d87872f5
SHA256

f3dabc2d14b7c5042eb84be946ec769e4f0901e1ce593fdf1cadce1e000fada7
SHA512

af3fd62f67acd84b857f3edbb599a26df7d604323344dad2e2523a2939e3a1aaabd74192631f6c28156331b19d0366a030eee571f481b91a19ac7755534fc87d
SSDEEP

3072:Hi1P4ulJIe71O+ep/i/YvjuJYxkKGKt9JoBanYvj:Y4uF19eFi/Yr6lKLJokYb

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1132	3516	WerFault.exe	14

C:\Users\Admin\AppData\Local\Temp\13e8ea77f3646674f82706eb090919c4.exe
"C:\Users\Admin\AppData\Local\Temp\13e8ea77f3646674f82706eb090919c4.exe"
1⤵
PID:3516
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3516 -s 232
  2⤵
  - Program crash
  PID:1132

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3516 -ip 3516
1⤵
PID:4172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3516-0-0x0000000000400000-0x0000000000437000-memory.dmp

Filesize
220KB

Download
memory/3516-1-0x0000000000400000-0x0000000000437000-memory.dmp

Filesize
220KB

Download