Analysis
-
max time kernel
63s -
max time network
58s -
platform
windows10-2004_x64 -
resource
win10v2004-20240419-en -
resource tags
arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system -
submitted
27-04-2024 01:24
Static task
static1
Behavioral task
behavioral1
Sample
5f302f2c568cfc3bef4f7690b84d15dd58caace21a60f76d807e909ff8f81e5e.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
5f302f2c568cfc3bef4f7690b84d15dd58caace21a60f76d807e909ff8f81e5e.exe
Resource
win10v2004-20240419-en
General
-
Target
5f302f2c568cfc3bef4f7690b84d15dd58caace21a60f76d807e909ff8f81e5e.exe
-
Size
442KB
-
MD5
ae73eb4cbe39e4a9e28a367331329a12
-
SHA1
fa827d6b4f9c94dd137fc24b201259a4c8293913
-
SHA256
5f302f2c568cfc3bef4f7690b84d15dd58caace21a60f76d807e909ff8f81e5e
-
SHA512
b8b28158002cdd797cfe9050d93ba7d3122ac9a6e308d60c13027546bcfde0fa17df38e980016c6bb91fec62b2b6a9acfc55b58a5983e2beab248aac469a9500
-
SSDEEP
6144:Ovlp7/pMTkjSJX3KkOyhJOF1zL1vMVi0jYZF3Z0DKh8n/QrT:Ovlp7/KQOJnHsLhUKh8n/QrT
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target Process procid_target 1684 1624 WerFault.exe 82
Processes
-
C:\Users\Admin\AppData\Local\Temp\5f302f2c568cfc3bef4f7690b84d15dd58caace21a60f76d807e909ff8f81e5e.exe"C:\Users\Admin\AppData\Local\Temp\5f302f2c568cfc3bef4f7690b84d15dd58caace21a60f76d807e909ff8f81e5e.exe"1⤵PID:1624
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1624 -s 6962⤵
- Program crash
PID:1684
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 1624 -ip 16241⤵PID:2752