Analysis
-
max time kernel
146s -
max time network
151s -
platform
windows11-21h2_x64 -
resource
win11-20240419-en -
resource tags
arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system -
submitted
29-04-2024 12:39
Static task
static1
Behavioral task
behavioral1
Sample
1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral2
Sample
1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4.exe
Resource
win11-20240419-en
General
-
Target
1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4.exe
-
Size
347KB
-
MD5
8cbb249cdad2ae39a85492c691939ffc
-
SHA1
9afd97156b1cefc6e0cd300623517d9d7c9dceee
-
SHA256
1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4
-
SHA512
d6a1173d3dc7f85eb1c4940f21c896b4a290d538b67450a3185fbd3552945f22642a83896380ebf8cdaed7818c62d2c16a84d1714061f7f2356ccbb40916f0d6
-
SSDEEP
6144:B0zWKrKBpVw9PVu+AJdTvClKgvkWJG1HYcVABLulAGeJa:ukfw9PqduMVW41HnWlqreJa
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 236 1380 WerFault.exe 1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4.exe"C:\Users\Admin\AppData\Local\Temp\1787b6ad4a484b9103dd80c56c3c38b94ea638efff196d7e05eacecec51454a4.exe"1⤵PID:1380
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1380 -s 7442⤵
- Program crash
PID:236
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 1380 -ip 13801⤵PID:2088