7ea280179e136a1a753cddc73123975a77ac32ddf48ac9a033513dfe99a9a52e | Triage

Analysis

max time kernel
94s
max time network
114s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
17-04-2024 14:46

Sharing

Report Analysis Logs

General

Target

hzwixydpga.exe
Size

58KB
MD5

a125ad645e6565297bab29355475dbad
SHA1

0c1b472760f288c6a31181165f2ceef63ea69fae
SHA256

0c69de10bce3bbdea0a2db0caf5a79b3864d4d4da59bcae89f08e5b468350681
SHA512

e1dbbfcd03c5f531dd03a0b929249c44fb85838de057c8983de7ce243dd4fe5393c50d4ddf22aa15d4817c1fddb53b4764bc85f3bac47962809c7f74a69a55fe
SSDEEP

768:vFX1hE9FCuqS+dUUo6RoQ7tuSbYuIEfM5I+gI+27rN8cxcNKw2WsUfeWacM:NXo92S+dUwRjlj+vn1c

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4304 4116 WerFault.exe hzwixydpga.exe

C:\Users\Admin\AppData\Local\Temp\hzwixydpga.exe
"C:\Users\Admin\AppData\Local\Temp\hzwixydpga.exe"
1⤵
PID:4116
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4116 -s 360
  2⤵
  - Program crash
  PID:4304

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 4116 -ip 4116
1⤵
PID:872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads