Analysis
-
max time kernel
130s -
max time network
138s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system -
submitted
22-05-2024 07:22
Behavioral task
behavioral1
Sample
2024-05-22_3cd70495c0d3ceeb8139d40387c62cb6_stop.exe
Resource
win7-20231129-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-05-22_3cd70495c0d3ceeb8139d40387c62cb6_stop.exe
Resource
win10v2004-20240426-en
1 signatures
150 seconds
General
-
Target
2024-05-22_3cd70495c0d3ceeb8139d40387c62cb6_stop.exe
-
Size
1.1MB
-
MD5
3cd70495c0d3ceeb8139d40387c62cb6
-
SHA1
094acb85be7bc92bcb3e57d5371937f5a9fad8f8
-
SHA256
d204bc307ac8ba0ae9bfc38310ed5ff97c371610b034ba53bd48a0bc2f3f86cb
-
SHA512
4678f64d5340a2e6535b6c7946ce6e90f5691e3b9a7dcac2f5196721d289691db2589f8c8eb07e387419c4d808b06e9f9cd319e772d861f41960a68ecbb02bea
-
SSDEEP
24576:ZBUIKn/vwOXGUXAjCymYZiVtElVIBT2roqnTSSxWeT/qRPOO8rEHUq7:F0dwAYZt6C31WeTiRPOhrkUq7
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 3212 2936 WerFault.exe 2024-05-22_3cd70495c0d3ceeb8139d40387c62cb6_stop.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\2024-05-22_3cd70495c0d3ceeb8139d40387c62cb6_stop.exe"C:\Users\Admin\AppData\Local\Temp\2024-05-22_3cd70495c0d3ceeb8139d40387c62cb6_stop.exe"1⤵PID:2936
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2936 -s 5682⤵
- Program crash
PID:3212
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 368 -p 2936 -ip 29361⤵PID:752