Analysis
-
max time kernel
145s -
max time network
146s -
platform
windows10-2004_x64 -
resource
win10v2004-20231222-en -
resource tags
arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system -
submitted
26-01-2024 01:01
Behavioral task
behavioral1
Sample
c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235.exe
Resource
win7-20231215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235.exe
Resource
win10v2004-20231222-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235.exe
-
Size
2.7MB
-
MD5
25f54eae9663e42be1923f75edaac975
-
SHA1
5174b7583e56e6dc4ff2219d3d40cd940e82b855
-
SHA256
c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235
-
SHA512
a7745c03ce1f28e6754d6e232ad5fe353cc8ceadb9af66b2de9b6735b228638838fa2effc7bbbd69f8357f9d5aabd4c9a50a075e9eb966f7af8e6e1795303155
-
SSDEEP
24576:csn9+gS6uHk1U49HPeT97o+hzy3cHoORwqetii6hsuiWVJFNUIuSc:tLS6uH8UkGT9oHiohS5
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 3800 2108 WerFault.exe c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235.exe"C:\Users\Admin\AppData\Local\Temp\c400d85a9904c13160b722f09f9b7a7409c47abe439d48bbebf57b02a4398235.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2108 -s 8322⤵
- Program crash
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 2108 -ip 21081⤵