42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44

Analysis

max time kernel
153s
max time network
166s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
27-11-2022 16:13

Target

42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44.exe
Size

396KB
MD5

1d680909403bbcc30ef1346513ed7522
SHA1

eba381516ff06578149e5ff113d6a659030f8b06
SHA256

42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44
SHA512

28f6ebef6d3ad7c128950102bfc07d7e875e00f4c50b2a05d8db9ae4b8feab966c592674ae741e9fa2b26e0ad1dc31a4ecabb0bce200ed917921c9b1452970b3
SSDEEP

12288:ehEJ1MkTaMhGte8u8Y9q4mZeEZ2gnGeSw:eh8sMhGY8TY9q4mZeC2

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

2232 5116 WerFault.exe 42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44.exe

pid	pid_target	process	target process
2232	5116	WerFault.exe	42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44.exe

C:\Users\Admin\AppData\Local\Temp\42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44.exe
"C:\Users\Admin\AppData\Local\Temp\42a9964818f127d77e0f11f363442bb25773f4df59e99c1ac2ec1886943fda44.exe"
1⤵
PID:5116

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 5116 -s 508
2⤵
- Program crash
PID:2232

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 5116 -ip 5116
1⤵
PID:4392

memory/5116-132-0x0000000002200000-0x0000000002206000-memory.dmp

Filesize
24KB

Download
memory/5116-133-0x0000000000400000-0x00000000004C9000-memory.dmp

Filesize
804KB

Download