Analysis
-
max time kernel
64s -
max time network
58s -
platform
windows11-21h2_x64 -
resource
win11-20240419-en -
resource tags
arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system -
submitted
26-04-2024 17:48
Static task
static1
Behavioral task
behavioral1
Sample
febfd057636b1b3039a92c2e197e3f819f76d290771e19da975783e9b7d73301.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral2
Sample
febfd057636b1b3039a92c2e197e3f819f76d290771e19da975783e9b7d73301.exe
Resource
win11-20240419-en
General
-
Target
febfd057636b1b3039a92c2e197e3f819f76d290771e19da975783e9b7d73301.exe
-
Size
450KB
-
MD5
5c9eda3649016bdd3d9c968cd7cc4e2a
-
SHA1
9c51283ff0df79c74b04469d2809d5225cff3bb6
-
SHA256
febfd057636b1b3039a92c2e197e3f819f76d290771e19da975783e9b7d73301
-
SHA512
69bda34cc120d427ba4fef4a19cfc886e43e37440f043744450d479dce51d0575440a78f72af6f5fbff48fa1dc0897c96079816bb416c8afb980a4eaf4ff9744
-
SSDEEP
6144:/WemdxdPc+E07NzSYnQfeXRte/4e1w3Q4CLrMf+gZZtrQJGfXH3cBZ:uemdx5X7m4a2Q5MfTBrQAXHsBZ
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target Process procid_target 3996 2124 WerFault.exe 78
Processes
-
C:\Users\Admin\AppData\Local\Temp\febfd057636b1b3039a92c2e197e3f819f76d290771e19da975783e9b7d73301.exe"C:\Users\Admin\AppData\Local\Temp\febfd057636b1b3039a92c2e197e3f819f76d290771e19da975783e9b7d73301.exe"1⤵PID:2124
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2124 -s 7042⤵
- Program crash
PID:3996
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 2124 -ip 21241⤵PID:3908