Analysis
-
max time kernel
91s -
max time network
146s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
13-09-2024 18:59
Static task
static1
Behavioral task
behavioral1
Sample
590f835c6b496d8c55dd013ce20f045dd9ff07f2a0846905196f9c6a0e456bb2.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
590f835c6b496d8c55dd013ce20f045dd9ff07f2a0846905196f9c6a0e456bb2.exe
Resource
win10v2004-20240802-en
General
-
Target
590f835c6b496d8c55dd013ce20f045dd9ff07f2a0846905196f9c6a0e456bb2.exe
-
Size
277KB
-
MD5
5ebc7795871def410dbb5e5b29b0a09b
-
SHA1
cd3101a6e0cac98b89921a8500eb830882fc9561
-
SHA256
590f835c6b496d8c55dd013ce20f045dd9ff07f2a0846905196f9c6a0e456bb2
-
SHA512
a6541cfdb7b24826fa76247d42a657697eaae6e5e7c011d1018328ee22aec207e09f5c1de57de91ea0a7b337b860e0f26073ef23ac8d8f729b51372973ee11cb
-
SSDEEP
6144:AA4l/DknTC3dM7B+mCGBV+UdvrEFp7hKvG9:AA4lbkny6B+mCGBjvrEH72G9
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target Process procid_target 3756 2040 WerFault.exe 82
Processes
-
C:\Users\Admin\AppData\Local\Temp\590f835c6b496d8c55dd013ce20f045dd9ff07f2a0846905196f9c6a0e456bb2.exe"C:\Users\Admin\AppData\Local\Temp\590f835c6b496d8c55dd013ce20f045dd9ff07f2a0846905196f9c6a0e456bb2.exe"1⤵PID:2040
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2040 -s 1802⤵
- Program crash
PID:3756
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 2040 -ip 20401⤵PID:3652