44ff71b18f2bd1112d28ac803be31e67f7e5546ac8660e0e534c32bbdad6abb6 | Triage

Analysis

max time kernel
146s
max time network
54s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
12/01/2024, 07:50

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

55e453aa298b3a7de4d3e3cd0efb7c6f.exe
Size

9KB
MD5

55e453aa298b3a7de4d3e3cd0efb7c6f
SHA1

de75d4a198c704fce10f55a2e6fb1e6f534c78be
SHA256

44ff71b18f2bd1112d28ac803be31e67f7e5546ac8660e0e534c32bbdad6abb6
SHA512

13ff9216e8e661f92af54f5d4f2c9fa77c7fa457f91a4eb67db411e09f3cdca46115a7efdbfe52530bd4ea617ae19cac793de85c999a8160e14f7fec98647ac0
SSDEEP

192:WmSt9yJ09U07krLw3Jv41fBvPmK3OqRsH:Wm2yKlgrE4FBvPTOEs

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4904	2892	WerFault.exe	15

C:\Users\Admin\AppData\Local\Temp\55e453aa298b3a7de4d3e3cd0efb7c6f.exe
"C:\Users\Admin\AppData\Local\Temp\55e453aa298b3a7de4d3e3cd0efb7c6f.exe"
1⤵
PID:2892
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2892 -s 816
  2⤵
  - Program crash
  PID:4904

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2892 -ip 2892
1⤵
PID:5004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2892-1-0x0000000074780000-0x0000000074F30000-memory.dmp

Filesize
7.7MB

Download
memory/2892-0-0x00000000008E0000-0x00000000008E8000-memory.dmp

Filesize
32KB

Download
memory/2892-2-0x0000000074780000-0x0000000074F30000-memory.dmp

Filesize
7.7MB

Download