Analysis
-
max time kernel
92s -
max time network
99s -
platform
windows11-21h2_x64 -
resource
win11-20240426-en -
resource tags
arch:x64arch:x86image:win11-20240426-enlocale:en-usos:windows11-21h2-x64system -
submitted
19-05-2024 16:25
Static task
static1
Behavioral task
behavioral1
Sample
5e1dd1ac144860cd422b6ce7055f3c045b5375674c0d14f8b954d8cc0dec9fa2.exe
Resource
win10v2004-20240426-en
Behavioral task
behavioral2
Sample
5e1dd1ac144860cd422b6ce7055f3c045b5375674c0d14f8b954d8cc0dec9fa2.exe
Resource
win11-20240426-en
General
-
Target
5e1dd1ac144860cd422b6ce7055f3c045b5375674c0d14f8b954d8cc0dec9fa2.exe
-
Size
297KB
-
MD5
a23f3121c13f8a9fadcfec4733436a96
-
SHA1
13fd9dae6d86caffba189d6e0370fb2678bc949e
-
SHA256
5e1dd1ac144860cd422b6ce7055f3c045b5375674c0d14f8b954d8cc0dec9fa2
-
SHA512
48139c57efc06546723294f4ed71a003cd4e45893f804913af6a42477116cc09f15fffbbc6a3c5cc4a9548eb6ccb2ce61b05a1902001ef1945e9f8ae61152ab8
-
SSDEEP
6144:FcEvXrIjTPQqdcXXrDFGylkB8x39HqkHT:FjXrI3vdcXX0Gj39Kkz
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target Process procid_target 2620 4468 WerFault.exe 79
Processes
-
C:\Users\Admin\AppData\Local\Temp\5e1dd1ac144860cd422b6ce7055f3c045b5375674c0d14f8b954d8cc0dec9fa2.exe"C:\Users\Admin\AppData\Local\Temp\5e1dd1ac144860cd422b6ce7055f3c045b5375674c0d14f8b954d8cc0dec9fa2.exe"1⤵PID:4468
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4468 -s 11322⤵
- Program crash
PID:2620
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 4468 -ip 44681⤵PID:2080