Analysis
-
max time kernel
70s -
max time network
64s -
platform
windows10-2004_x64 -
resource
win10v2004-20240419-en -
resource tags
arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system -
submitted
29-04-2024 07:16
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
331ed8ae289ce0f120f7b6232bdddd35.exe
Resource
win7-20240215-en
23 signatures
150 seconds
Behavioral task
behavioral2
Sample
331ed8ae289ce0f120f7b6232bdddd35.exe
Resource
win10v2004-20240419-en
1 signatures
150 seconds
General
-
Target
331ed8ae289ce0f120f7b6232bdddd35.exe
-
Size
347KB
-
MD5
331ed8ae289ce0f120f7b6232bdddd35
-
SHA1
72eb7bb215763e4d22ff5b33464745857b4259bc
-
SHA256
a96b7f18c9a9c703893185f244df0e6d482e8b7182e4268c607be387acc0e2e1
-
SHA512
a1b240ff81b49424753c90663a9728268bfbaa2781a7a9d2293f72af9cba03132704f718cdb8e1183398230d2ab25e39a3c66728e091d00bc91e3d199682b8c0
-
SSDEEP
6144:hGNRPF5bRarCh+as9IGq4Bnz86C90O0zS9Hfq1VxcpbJSlKXBESyflf:oDYCYaSIf4S6g0O0Cy1qAldSAlf
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 4804 852 WerFault.exe 331ed8ae289ce0f120f7b6232bdddd35.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\331ed8ae289ce0f120f7b6232bdddd35.exe"C:\Users\Admin\AppData\Local\Temp\331ed8ae289ce0f120f7b6232bdddd35.exe"1⤵PID:852
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 852 -s 6962⤵
- Program crash
PID:4804
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 852 -ip 8521⤵PID:1812