Analysis
-
max time kernel
149s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
13-09-2024 19:02
Static task
static1
Behavioral task
behavioral1
Sample
db4e75e2db430f0189331fb8f02bafff9eaba8975f8132f45b4513a8fb238920.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
db4e75e2db430f0189331fb8f02bafff9eaba8975f8132f45b4513a8fb238920.exe
Resource
win10v2004-20240802-en
General
-
Target
db4e75e2db430f0189331fb8f02bafff9eaba8975f8132f45b4513a8fb238920.exe
-
Size
277KB
-
MD5
a9a1f104898a9b047e6a8dd70fcc5070
-
SHA1
d594d17e2e3506d7419c919b8923ee44e4521402
-
SHA256
db4e75e2db430f0189331fb8f02bafff9eaba8975f8132f45b4513a8fb238920
-
SHA512
8a575dfcdd78e06342ec132578586e4519b62be447f4af353a1c3bb86ef8b06ffde62c2ab880abb937358fcf69da293559e893766b062980c445a59e2e1257bd
-
SSDEEP
3072:vHrfzYPc6X/YpW4l/DReos0gQ+dWdMuoB+UKrRiEOB9dXCQT1X/MK0dk5xMBQLJ3:AATl/DRfkQbM7B+mCGBV+UdvrEFp7hKB
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target Process procid_target 5056 2704 WerFault.exe 82
Processes
-
C:\Users\Admin\AppData\Local\Temp\db4e75e2db430f0189331fb8f02bafff9eaba8975f8132f45b4513a8fb238920.exe"C:\Users\Admin\AppData\Local\Temp\db4e75e2db430f0189331fb8f02bafff9eaba8975f8132f45b4513a8fb238920.exe"1⤵PID:2704
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2704 -s 1802⤵
- Program crash
PID:5056
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2704 -ip 27041⤵PID:2716