ea05b2f5c8e37ee14b90b00c21627a5868044fff0404a20473299191bb33e766

Analysis

max time kernel
152s
max time network
187s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
20/10/2022, 02:46

Target

ea05b2f5c8e37ee14b90b00c21627a5868044fff0404a20473299191bb33e766.exe
Size

134KB
MD5

80c26e6bcb72fc1264f912a4ca06f200
SHA1

1e16c1d767c6556576115f04bad14d6a80489b7e
SHA256

ea05b2f5c8e37ee14b90b00c21627a5868044fff0404a20473299191bb33e766
SHA512

1319c45a4ea9ebc35b96872cdbe49106c04e543ae523c93aba28dfa0338d08dcfbad982ee7c1b1d79e58971de83043ae6f40ab139bb5abcfc931c02b0cd12e04
SSDEEP

1536:Z7ppNX/feQjpWbqX65p163YC1gKV3CLaxi9BhiIeolE/Ww:ZleQjpgqK0I4rV3Fxi9DiIeolE+

Score

3^/10

Program crash 3 IoCs

pid	pid_target	Process	procid_target
1416	4196	WerFault.exe	80
216	4196	WerFault.exe	80
4516	4196	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\ea05b2f5c8e37ee14b90b00c21627a5868044fff0404a20473299191bb33e766.exe
"C:\Users\Admin\AppData\Local\Temp\ea05b2f5c8e37ee14b90b00c21627a5868044fff0404a20473299191bb33e766.exe"
1⤵
PID:4196
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4196 -s 332
  2⤵
  - Program crash
  PID:1416
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4196 -s 340
  2⤵
  - Program crash
  PID:216
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4196 -s 380
  2⤵
  - Program crash
  PID:4516

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 4196 -ip 4196
1⤵
PID:3112

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 532 -p 4196 -ip 4196
1⤵
PID:4284

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 548 -p 4196 -ip 4196
1⤵
PID:3576

memory/4196-132-0x0000000000400000-0x0000000000426000-memory.dmp

Filesize
152KB

Download
memory/4196-133-0x0000000000400000-0x0000000000426000-memory.dmp

Filesize
152KB

Download