Analysis
-
max time kernel
149s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system -
submitted
05-03-2024 21:40
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
b5b92b73d6c19bc4fc29724cc18fc92e.exe
Resource
win7-20240221-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
b5b92b73d6c19bc4fc29724cc18fc92e.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
b5b92b73d6c19bc4fc29724cc18fc92e.exe
-
Size
378KB
-
MD5
b5b92b73d6c19bc4fc29724cc18fc92e
-
SHA1
bbef7e16aa4e0f8c19423e6fd76c874ae6ec07fc
-
SHA256
818df247c1a13426b772af67746cd59762b8ea032c0d5d228b762fc034c17130
-
SHA512
a707a2c3b219db79efb431fc29df6d8434550c19f65121acfd63dbc33ab5e99c7403146aebb4de7411e27da94b4a7853b78a34e55b1375a0290c708984923051
-
SSDEEP
6144:/4zTcm6V87qHQHfuxUucegnTWBRKd7WocNsvEKGt90b49RTCdkL3RW03O6RM6mH9:uTF92MegTghocNsRLbici31O6M6mGw
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 3408 1688 WerFault.exe 87
Processes
-
C:\Users\Admin\AppData\Local\Temp\b5b92b73d6c19bc4fc29724cc18fc92e.exe"C:\Users\Admin\AppData\Local\Temp\b5b92b73d6c19bc4fc29724cc18fc92e.exe"1⤵PID:1688
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1688 -s 5242⤵
- Program crash
PID:3408
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 1688 -ip 16881⤵PID:3588