Analysis
-
max time kernel
148s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
07/11/2024, 07:08
Static task
static1
Behavioral task
behavioral1
Sample
8e295928158406220be49b74b735ed6ea516fe4af2844282d75d717c85ec2e75.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
8e295928158406220be49b74b735ed6ea516fe4af2844282d75d717c85ec2e75.exe
Resource
win10v2004-20241007-en
General
-
Target
8e295928158406220be49b74b735ed6ea516fe4af2844282d75d717c85ec2e75.exe
-
Size
277KB
-
MD5
5c87f53adedc24b99f2bc6792dbbd6e1
-
SHA1
a2b38db15c11f0b39673e366e5ebe814c6ee2651
-
SHA256
8e295928158406220be49b74b735ed6ea516fe4af2844282d75d717c85ec2e75
-
SHA512
3f94612b62ed7074a1a9bbf74b0810d8795a9399ef80cc4acde44d188185c117d3ebe7a0b52442b8a45ecc80af0007448d491ea127e34268898d7dcb563669d0
-
SSDEEP
6144:7AsM/DRfkTC3dM7B+mCNBV+UdvrEFp7hK6GF:7AsMbRfky6B+mCNBjvrEH7GF
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 3436 4868 WerFault.exe 82
Processes
-
C:\Users\Admin\AppData\Local\Temp\8e295928158406220be49b74b735ed6ea516fe4af2844282d75d717c85ec2e75.exe"C:\Users\Admin\AppData\Local\Temp\8e295928158406220be49b74b735ed6ea516fe4af2844282d75d717c85ec2e75.exe"1⤵PID:4868
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4868 -s 1802⤵
- Program crash
PID:3436
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4868 -ip 48681⤵PID:1744