Analysis
-
max time kernel
139s -
max time network
110s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
19-05-2024 22:03
Static task
static1
Behavioral task
behavioral1
Sample
0cac77ededb3d98415407237576338544f8c3342d00109b770bb432646a7f245.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
0cac77ededb3d98415407237576338544f8c3342d00109b770bb432646a7f245.exe
Resource
win11-20240426-en
General
-
Target
0cac77ededb3d98415407237576338544f8c3342d00109b770bb432646a7f245.exe
-
Size
283KB
-
MD5
6f4435881eff84e85b70fc3edbe279c5
-
SHA1
94cd74c9e7547a282ff9f8cd35d26d4b1e662868
-
SHA256
0cac77ededb3d98415407237576338544f8c3342d00109b770bb432646a7f245
-
SHA512
63dda3b3288a72f94fc59eb9b7cad1ec95992364d6d366029767c387585fd0e11d8d68f6fe30896dd4fae34dc32e82111c39bf69ce2ad6a758a2d96e36e3aefd
-
SSDEEP
3072:fNxoMMaDlHI5JCgmh1cYiP0nNAyYbxZ5wTY18FCIjboZK+sMYH3/WbX5/85m5:1KMjZojfmh1ZnNA3NZ5wTy21kC3/Wj5
Malware Config
Extracted
lumma
https://purefinishonerbrothsjke.shop/api
Signatures
Processes
-
C:\Users\Admin\AppData\Local\Temp\0cac77ededb3d98415407237576338544f8c3342d00109b770bb432646a7f245.exe"C:\Users\Admin\AppData\Local\Temp\0cac77ededb3d98415407237576338544f8c3342d00109b770bb432646a7f245.exe"1⤵PID:4272
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4272 -s 3882⤵
- Program crash
PID:1472
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 4272 -ip 42721⤵PID:436