Analysis
-
max time kernel
133s -
max time network
108s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
01/06/2024, 18:26
Static task
static1
Behavioral task
behavioral1
Sample
33e4dc95c7d199931944b11e45d88352dc2521f0dc7b60f1335a35f4262e594f.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
33e4dc95c7d199931944b11e45d88352dc2521f0dc7b60f1335a35f4262e594f.exe
Resource
win10v2004-20240508-en
General
-
Target
33e4dc95c7d199931944b11e45d88352dc2521f0dc7b60f1335a35f4262e594f.exe
-
Size
506KB
-
MD5
76e77d00151e6db3fac84e9c8b084730
-
SHA1
39411f93aa3a23b56e1cc1d9180fe35301c86be3
-
SHA256
33e4dc95c7d199931944b11e45d88352dc2521f0dc7b60f1335a35f4262e594f
-
SHA512
cb334e092a428724a743f25a7bf9eff04337b23811ed793d4dbd2229f468af5c40ca209c2a7063bd3761dc0e7756b0777f2025270553063b5fdbcf610b3c26be
-
SSDEEP
6144:NwMp/k2H8Wt9QCgAPPF594O7zGItn6B40b4o1+1lfRuUprYC6C4Vlls0JKQ:n+2cWHPiO7y40d1+1lfRRH6tV3NR
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 3264 2920 WerFault.exe 82
Processes
-
C:\Users\Admin\AppData\Local\Temp\33e4dc95c7d199931944b11e45d88352dc2521f0dc7b60f1335a35f4262e594f.exe"C:\Users\Admin\AppData\Local\Temp\33e4dc95c7d199931944b11e45d88352dc2521f0dc7b60f1335a35f4262e594f.exe"1⤵PID:2920
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2920 -s 10642⤵
- Program crash
PID:3264
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2920 -ip 29201⤵PID:3556