81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1

Analysis

max time kernel
186s
max time network
191s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
23-11-2022 11:13

Target

81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1.exe
Size

424KB
MD5

1d0e1f4e0010d5b50a097b9626ab5266
SHA1

f2a1aa1e6701cd7af65d7f900e3d6b503c7f12ee
SHA256

81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1
SHA512

8dadce1f87228901352bca04d55aa4664232d68bc432b9a3c9635b4d8ff677e2c1beda24f424fee452949127ce0637959a95b2c2d78c210f131432e7cd53f883
SSDEEP

6144:zZ/P2GDY5aQLh7YHjAxhrzM06T1goACQIX57RUWlFcN3CeVFvht4LZN2Wh:BPpat5YHsxhrY06T1ALs7RsQd

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4376 608 WerFault.exe 81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1.exe

pid	pid_target	process	target process
4376	608	WerFault.exe	81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1.exe

C:\Users\Admin\AppData\Local\Temp\81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1.exe
"C:\Users\Admin\AppData\Local\Temp\81611018d382167448f80aca8fdaff1485f02ec21ed72709c34c6f2a71cc71f1.exe"
1⤵
PID:608
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 608 -s 552
  2⤵
  - Program crash
  PID:4376

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 472 -p 608 -ip 608
1⤵
PID:3808

memory/608-132-0x0000000000410000-0x00000000004D8000-memory.dmp

Filesize
800KB

Download