2d7c03bb4babe194e76ea14a4afc4dc1073c38a043093f1ed4b6369d9f04c95e

Analysis

max time kernel
133s
max time network
141s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
12/10/2022, 14:15

Target

2d7c03bb4babe194e76ea14a4afc4dc1073c38a043093f1ed4b6369d9f04c95e.exe
Size

652KB
MD5

476393454cd0a22b525e497ff5efce31
SHA1

534b6369869a00aea6421c2c80c2517191275cc2
SHA256

2d7c03bb4babe194e76ea14a4afc4dc1073c38a043093f1ed4b6369d9f04c95e
SHA512

643dc476b31876e2777f27bee5901e1b50d5ead2b4c3d483382f79efdfd878819ddf308e3608b5aec944588671ddf5d7d390add7bda3f3b79d97e1ef9f81b36e
SSDEEP

12288:czg0Kike1px8EUjKGaCkw3Lwr4ve6WPilEtk0rF5s8a1/FTKN9xs:Kg1itmEUjZkw7wreeYlEtLrFy8o/FTKS

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
4636	5004	WerFault.exe	81
3504	5004	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\2d7c03bb4babe194e76ea14a4afc4dc1073c38a043093f1ed4b6369d9f04c95e.exe
"C:\Users\Admin\AppData\Local\Temp\2d7c03bb4babe194e76ea14a4afc4dc1073c38a043093f1ed4b6369d9f04c95e.exe"
1⤵
PID:5004
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5004 -s 548
  2⤵
  - Program crash
  PID:4636
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5004 -s 588
  2⤵
  - Program crash
  PID:3504

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 5004 -ip 5004
1⤵
PID:1380

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 536 -p 5004 -ip 5004
1⤵
PID:4580

memory/5004-132-0x000000000088D000-0x000000000089C000-memory.dmp

Filesize
60KB

Download
memory/5004-133-0x000000000085E000-0x000000000088E000-memory.dmp

Filesize
192KB

Download
memory/5004-134-0x0000000002884000-0x0000000002932000-memory.dmp

Filesize
696KB

Download