Analysis
-
max time kernel
51s -
max time network
51s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
10/06/2024, 22:03
Behavioral task
behavioral1
Sample
51ecbac3dd3171d8db96cb7b78954ee16a6998a137df6c15f3f5ad2ff9526049.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
51ecbac3dd3171d8db96cb7b78954ee16a6998a137df6c15f3f5ad2ff9526049.exe
Resource
win10v2004-20240508-en
General
-
Target
51ecbac3dd3171d8db96cb7b78954ee16a6998a137df6c15f3f5ad2ff9526049.exe
-
Size
81KB
-
MD5
a6d68c0136b73e29e2a21dccca766ea5
-
SHA1
381e61b4aac06a9fdc8ed0a9fb4de53d0121602b
-
SHA256
51ecbac3dd3171d8db96cb7b78954ee16a6998a137df6c15f3f5ad2ff9526049
-
SHA512
4e6f7778a4c0b25e2572edc5a9f535905c098c37624711bcbc1684e10ebc03fd9946a05764273638031bc083d37a9dd633d8108477ab8e8d7699e76be304cea8
-
SSDEEP
1536:MHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVt/2YRmA7hGRLlpLTO27UQsGk:MHoLde/OgV432UcP39hXJZn/UE4l5wVF
Malware Config
Signatures
-
resource yara_rule behavioral2/memory/744-0-0x0000000000400000-0x0000000000429000-memory.dmp upx behavioral2/memory/744-2-0x0000000000400000-0x0000000000429000-memory.dmp upx -
Program crash 1 IoCs
pid pid_target Process procid_target 3524 744 WerFault.exe 81
Processes
-
C:\Users\Admin\AppData\Local\Temp\51ecbac3dd3171d8db96cb7b78954ee16a6998a137df6c15f3f5ad2ff9526049.exe"C:\Users\Admin\AppData\Local\Temp\51ecbac3dd3171d8db96cb7b78954ee16a6998a137df6c15f3f5ad2ff9526049.exe"1⤵PID:744
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 744 -s 3802⤵
- Program crash
PID:3524
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 744 -ip 7441⤵PID:208