b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4

Analysis

max time kernel
177s
max time network
188s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
24/11/2022, 00:04

Target

b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4.exe
Size

640KB
MD5

52a2e81452102340bc35a3405d113608
SHA1

c72dedbb2ec6e6928038042990bdf00dcbd3cb5f
SHA256

b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4
SHA512

571c9dcdda8be5f550f9122458aafad314b6ee49029ad18f7a8d453408f7a96f1319fe07f39bd593642c9342d0a9717d45d1a21d702fe43f3d9faf6215c3d77d
SSDEEP

12288:SAycN/eQNeK+SOdoQL/NSUcKk/YJ5MZA5ohNu1TB+TnsNP:Sip/BORZcKGq5Yzuin

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
624	2180	WerFault.exe	79
4748	2180	WerFault.exe	79

C:\Users\Admin\AppData\Local\Temp\b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4.exe
"C:\Users\Admin\AppData\Local\Temp\b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4.exe"
1⤵
PID:2180
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2180 -s 548
  2⤵
  - Program crash
  PID:624
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2180 -s 588
  2⤵
  - Program crash
  PID:4748

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 2180 -ip 2180
1⤵
PID:2064

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 540 -p 2180 -ip 2180
1⤵
PID:4768

memory/2180-132-0x00000000006E0000-0x00000000006F0000-memory.dmp

Filesize
64KB

Download
memory/2180-133-0x00000000006D7000-0x00000000006E1000-memory.dmp

Filesize
40KB

Download
memory/2180-134-0x0000000000723000-0x0000000000793000-memory.dmp

Filesize
448KB

Download
memory/2180-135-0x0000000000723000-0x0000000000793000-memory.dmp

Filesize
448KB

Download