Analysis
-
max time kernel
91s -
max time network
145s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
27-01-2024 09:13
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
79d8daa8111ee7e88dce9d6b75bc4762.exe
Resource
win7-20231215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
79d8daa8111ee7e88dce9d6b75bc4762.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
79d8daa8111ee7e88dce9d6b75bc4762.exe
-
Size
521KB
-
MD5
79d8daa8111ee7e88dce9d6b75bc4762
-
SHA1
f4cb7d1973fec2c39369fa0caff6aaffb686273f
-
SHA256
90c735733f437dce108c63e77e142e650799bf24e47a4394e35d58a3942fe591
-
SHA512
fe2477a243de18793ade1e8ac5ca71739c34ab6d01e5938244c7103311db079a16dbaef81990c3c6f147c30d93eb020115e5ec800877728e64ef1e3d443ee175
-
SSDEEP
12288:ArMIztyCK5x8CBmn+RrNbEyWYa0Ie1vUxLV50:6ZyCA8CBmn+RrNj9ay5+i
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 3840 1892 WerFault.exe 85
Processes
-
C:\Users\Admin\AppData\Local\Temp\79d8daa8111ee7e88dce9d6b75bc4762.exe"C:\Users\Admin\AppData\Local\Temp\79d8daa8111ee7e88dce9d6b75bc4762.exe"1⤵PID:1892
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1892 -s 4522⤵
- Program crash
PID:3840
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1892 -ip 18921⤵PID:736