1af9a57a2680e724aae61e26e673b436e7aaec48886e2278a34597edfb3485c2

Analysis

max time kernel
151s
max time network
164s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
02/10/2022, 03:51

Target

1af9a57a2680e724aae61e26e673b436e7aaec48886e2278a34597edfb3485c2.exe
Size

160KB
MD5

7878250220061da3e5e24bbc764c8958
SHA1

85d212f2199055bbaea4c4f6ca0205e15a7ba507
SHA256

1af9a57a2680e724aae61e26e673b436e7aaec48886e2278a34597edfb3485c2
SHA512

12c75a88068b14064f2f677fac8c5ee51a97e4c0d027f41dfb8b170b438a8d53e2db41f371a9a1f1bc711bbc517faf7b2df793399ceec20d6a8d86bb717fa15d
SSDEEP

3072:WJ/VJMRlIqcQ5YkJoYEYwBYTDY0BYMX01AbHqwy2OS3mD:WJjcITQNUI8D2E

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
860	4884	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\1af9a57a2680e724aae61e26e673b436e7aaec48886e2278a34597edfb3485c2.exe
"C:\Users\Admin\AppData\Local\Temp\1af9a57a2680e724aae61e26e673b436e7aaec48886e2278a34597edfb3485c2.exe"
1⤵
PID:4884
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4884 -s 408
  2⤵
  - Program crash
  PID:860

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 4884 -ip 4884
1⤵
PID:4152

memory/4884-132-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download