9d3dfaa94a8013eb4305dcffb205f4d0d36c17427c6a4bdd70d19d599a68c2c0

Analysis

max time kernel
92s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
02/10/2022, 12:43

Target

9d3dfaa94a8013eb4305dcffb205f4d0d36c17427c6a4bdd70d19d599a68c2c0.exe
Size

588KB
MD5

7034478b4a6d22b2cf2ef45870567840
SHA1

aa01e38e9a5f8a44e27fa13c2e75ba204315069a
SHA256

9d3dfaa94a8013eb4305dcffb205f4d0d36c17427c6a4bdd70d19d599a68c2c0
SHA512

e8d8daa015c24c0084cfffca7233270cf6f9ce419b32cd4318549090ef708c4bcb67e6e77e08bedf01dc2ca934185a7a4c406663403d65d29b15506865dff9b1
SSDEEP

12288:QWBEvYwfQnjTzgUprNjvdozBzAz2+Ck/VaRu05a1xtmE:QW8KYUz4BiC6VaRu041xtm

Score

3^/10

Program crash 3 IoCs

pid	pid_target	Process	procid_target
4640	1216	WerFault.exe	80
1624	1216	WerFault.exe	80
1972	1216	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\9d3dfaa94a8013eb4305dcffb205f4d0d36c17427c6a4bdd70d19d599a68c2c0.exe
"C:\Users\Admin\AppData\Local\Temp\9d3dfaa94a8013eb4305dcffb205f4d0d36c17427c6a4bdd70d19d599a68c2c0.exe"
1⤵
PID:1216
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1216 -s 468
  2⤵
  - Program crash
  PID:4640
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1216 -s 488
  2⤵
  - Program crash
  PID:1624
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1216 -s 508
  2⤵
  - Program crash
  PID:1972

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 1216 -ip 1216
1⤵
PID:4824

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 1216 -ip 1216
1⤵
PID:368

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 576 -p 1216 -ip 1216
1⤵
PID:1960

memory/1216-132-0x00000000017C0000-0x00000000017CC000-memory.dmp

Filesize
48KB

Download
memory/1216-133-0x00000000017C0000-0x00000000017CC000-memory.dmp

Filesize
48KB

Download