2d4355bd4bb8957f50ca43f82f4a7e194375da5e4b6c28d83da5fbebbfa54931 | Triage

Analysis

max time kernel
142s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
19-01-2024 09:13

Sharing

Report Analysis Logs

General

Target

673eb9cc9ca6ce256c7d0402384a6800.exe
Size

122KB
MD5

673eb9cc9ca6ce256c7d0402384a6800
SHA1

fa1252ee195eb3af53393be793946b70e95359a5
SHA256

2d4355bd4bb8957f50ca43f82f4a7e194375da5e4b6c28d83da5fbebbfa54931
SHA512

322747d72a32276164c590a0c049f062b39ad12e57e33cd466081a84e468282d6ecd6918d9d6e19bcdca8698829db5fef0da3e4cdb8914c1ce962172a219cc0b
SSDEEP

3072:dL5pX5NY6aCW0ReuJ6CW2F6fJxYHZKzlhwC:dL5F/LaCWsH6CMDsZKzT9

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3164	4360	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\673eb9cc9ca6ce256c7d0402384a6800.exe
"C:\Users\Admin\AppData\Local\Temp\673eb9cc9ca6ce256c7d0402384a6800.exe"
1⤵
PID:4360
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4360 -s 224
  2⤵
  - Program crash
  PID:3164

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4360 -ip 4360
1⤵
PID:3656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4360-0-0x0000000000400000-0x0000000000454000-memory.dmp

Filesize
336KB

Download
memory/4360-1-0x0000000000400000-0x0000000000454000-memory.dmp

Filesize
336KB

Download