8435bfb28ad4676dd8febe45ea5ddad5f9d48c546bd828a607045a1130f88e68

Resubmissions

07/07/2024, 00:56

240707-bag6kayfqm 3

07/07/2024, 00:54

240707-a9na7a1epb 3

Analysis

max time kernel
33s
max time network
42s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
07/07/2024, 00:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

InfinityUI.exe
Size

107KB
MD5

bb315ba73714631fde1375c536c0a2a5
SHA1

266faef914679d1cc0bb3ffdb3645f7be9d5ddef
SHA256

8435bfb28ad4676dd8febe45ea5ddad5f9d48c546bd828a607045a1130f88e68
SHA512

5f391912903dfcae0c35c4873aff5179b5955d5d994acf6f5f88f6d98f65b3d2a72886fde0e72ed61f02619190d5980a01097e11020ccfc82871581d54c7829b
SSDEEP

3072:s3DnAKoMVWHmq3hV2Be3Pemye3Pemfe3PempfEPOgKHVj3ZymOBamuzcQWRrRdpS:snuefrHVEmOMms+tdp

Score

3^/10

Malware Config

Signatures

Program crash 6 IoCs

pid	pid_target	Process	procid_target
1772	3428	WerFault.exe	82
2948	4364	WerFault.exe	95
4436	1940	WerFault.exe	99
3876	3084	WerFault.exe	104
868	4536	WerFault.exe	107
4452	3640	WerFault.exe	108

C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe
"C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe"
1⤵
PID:3428
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3428 -s 1052
  2⤵
  - Program crash
  PID:1772

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 3428 -ip 3428
1⤵
PID:2260

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:3536

C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe
"C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe"
1⤵
PID:4364
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4364 -s 1048
  2⤵
  - Program crash
  PID:2948

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 4364 -ip 4364
1⤵
PID:4980

C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe
"C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe"
1⤵
PID:1940
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1940 -s 1016
  2⤵
  - Program crash
  PID:4436

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 536 -p 1940 -ip 1940
1⤵
PID:2404

C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe
"C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe"
1⤵
PID:3084
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3084 -s 1016
  2⤵
  - Program crash
  PID:3876

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 3084 -ip 3084
1⤵
PID:3676

C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe
"C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe"
1⤵
PID:4536
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4536 -s 1004
  2⤵
  - Program crash
  PID:868

C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe
"C:\Users\Admin\AppData\Local\Temp\InfinityUI.exe"
1⤵
PID:3640
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3640 -s 1004
  2⤵
  - Program crash
  PID:4452

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 556 -p 4536 -ip 4536
1⤵
PID:1084

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 3640 -ip 3640
1⤵
PID:4852

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1940-10-0x00000000748E0000-0x000000007498B000-memory.dmp

Filesize
684KB

Download
memory/1940-12-0x00000000748E0000-0x000000007498B000-memory.dmp

Filesize
684KB

Download
memory/1940-11-0x00000000748E0000-0x000000007498B000-memory.dmp

Filesize
684KB

Download
memory/3428-6-0x0000000074910000-0x00000000750C0000-memory.dmp

Filesize
7.7MB

Download
memory/3428-4-0x00000000052B0000-0x00000000052BA000-memory.dmp

Filesize
40KB

Download
memory/3428-5-0x0000000074910000-0x00000000750C0000-memory.dmp

Filesize
7.7MB

Download
memory/3428-0-0x000000007491E000-0x000000007491F000-memory.dmp

Filesize
4KB

Download
memory/3428-3-0x00000000051F0000-0x0000000005282000-memory.dmp

Filesize
584KB

Download
memory/3428-2-0x0000000005700000-0x0000000005CA4000-memory.dmp

Filesize
5.6MB

Download
memory/3428-1-0x00000000007D0000-0x00000000007F2000-memory.dmp

Filesize
136KB

Download
memory/4364-7-0x0000000074910000-0x00000000750C0000-memory.dmp

Filesize
7.7MB

Download
memory/4364-8-0x0000000074910000-0x00000000750C0000-memory.dmp

Filesize
7.7MB

Download
memory/4364-9-0x0000000074910000-0x00000000750C0000-memory.dmp

Filesize
7.7MB

Download

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads