f00c68a219b7cb109796e4bd535f2d197b3be3cff5fae0dbd966f41a285e3b14

Analysis

max time kernel
139s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
19/09/2022, 09:08

Target

f00c68a219b7cb109796e4bd535f2d197b3be3cff5fae0dbd966f41a285e3b14.exe
Size

447KB
MD5

5d4275f6ad519c27baf61f8de3b99eff
SHA1

61715da4801f91b82042a7e94355102da0f07d13
SHA256

f00c68a219b7cb109796e4bd535f2d197b3be3cff5fae0dbd966f41a285e3b14
SHA512

2f174c01bbe506f406c75649a307fd42f5cd074449ccb9094343514df08d102bb3757d189c3d63ca6f59f5895be8a7a0d749c2588aa5848eb4e9ef0cb8950f8e
SSDEEP

12288:OAfkKMD/8+qZRNLG++W2ZBtuoPrSn35ITp1UhCCVyWrA:OVtWSv+3aT7OrA

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4316	2796	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\f00c68a219b7cb109796e4bd535f2d197b3be3cff5fae0dbd966f41a285e3b14.exe
"C:\Users\Admin\AppData\Local\Temp\f00c68a219b7cb109796e4bd535f2d197b3be3cff5fae0dbd966f41a285e3b14.exe"
1⤵
PID:2796
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2796 -s 532
  2⤵
  - Program crash
  PID:4316

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 464 -p 2796 -ip 2796
1⤵
PID:1716

memory/2796-132-0x00000000004C0000-0x000000000052A000-memory.dmp

Filesize
424KB

Download
memory/2796-133-0x0000000000529000-0x0000000000539000-memory.dmp

Filesize
64KB

Download
memory/2796-134-0x00000000004C0000-0x000000000052A000-memory.dmp

Filesize
424KB

Download