74ca0e628c79d64b8801b16abef652a0144011750b04b733a7493e6592445ab7 | Triage

Analysis

max time kernel
147s
max time network
150s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
11/03/2024, 15:20

Sharing

Report Analysis Logs

General

Target

out.exe
Size

9.4MB
MD5

dfbde94723f6fe0fd3f97d3734258b22
SHA1

6c1edecdb27bcc60233645d7518abcb3576d604a
SHA256

bc0d0943bdb627184f53b9193f848c07e3c2e1b8b40ddca8a8b789931d7057e8
SHA512

46fa5be4ee53950c74a7fddbddb845e48513059ad703972a06ff55c15a03abefab56dd3c2e3f77072bbc68a694bc58d5c68fc79ae542e4f3a5509e55ba34e7db
SSDEEP

98304:E506b6UVePVZDslFWaoNBm4BwoEOAXH7CvtwvMdBxn5R5dUYzhOUCZb/el:jYefDGFWXmucOAXuvVf+5

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1156	4052	WerFault.exe	79

C:\Users\Admin\AppData\Local\Temp\out.exe
"C:\Users\Admin\AppData\Local\Temp\out.exe"
1⤵
PID:4052
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4052 -s 8
  2⤵
  - Program crash
  PID:1156

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 4052 -ip 4052
1⤵
PID:1124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads