Analysis
-
max time kernel
152s -
max time network
159s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
03/02/2024, 16:39
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
8cd2099e44faea182081272b5cc46838.exe
Resource
win7-20231215-en
10 signatures
150 seconds
Behavioral task
behavioral2
Sample
8cd2099e44faea182081272b5cc46838.exe
Resource
win10v2004-20231215-en
1 signatures
150 seconds
General
-
Target
8cd2099e44faea182081272b5cc46838.exe
-
Size
285KB
-
MD5
8cd2099e44faea182081272b5cc46838
-
SHA1
c892742a8e36594b8c97e239594b823068fb7ac3
-
SHA256
c7b00350372958271605f03df277b1fd0781a8d7930bbe7c7636934233247453
-
SHA512
a9e335fef6cb073f1442eef56d7a5c4347f9db401766feafe0543c0f139b51b9e2f90d4894077414ffdca834dd857e95d27add37b16576d98950edc0496107c8
-
SSDEEP
6144:oSSSbUbMaY0dRhuvUkKwYEqYGU61rEcl8ahjOgEQIR8n6b/FI:oSTYbzndRhusEqpn1rEahKgjO80/FI
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 964 4288 WerFault.exe 82
Processes
-
C:\Users\Admin\AppData\Local\Temp\8cd2099e44faea182081272b5cc46838.exe"C:\Users\Admin\AppData\Local\Temp\8cd2099e44faea182081272b5cc46838.exe"1⤵PID:4288
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4288 -s 2642⤵
- Program crash
PID:964
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 368 -p 4288 -ip 42881⤵PID:4960