67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307

Analysis

max time kernel
91s
max time network
128s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
28-11-2022 03:25

Target

67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307.exe
Size

336KB
MD5

0e941ff62c6223c8e3677982f3bbdbbe
SHA1

0a722e58b7aec5ddf01e5e6c8aa2da864bb3a5ab
SHA256

67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307
SHA512

ad62adfeb5f851e081c2917d88d5b3cfca690df4b29cfd50a6694fef12f715142a85ce043bf24a90b8bf6ea70f8775fd3bd2503408b9f13af79142ee027499e3
SSDEEP

6144:CEDoqBv04R0DQVLmIsdGKqmiKBQ1uOAFwLxGN9E66UyPo:CEDoqBv042DmsdTiKBQ1uzFwkHE66U

Score

3^/10

Program crash 2 IoCs

Processes:

WerFault.exeWerFault.exe

pid	pid_target	process	target process
2724	4848	WerFault.exe	67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307.exe
3264	4848	WerFault.exe	67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307.exe

C:\Users\Admin\AppData\Local\Temp\67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307.exe
"C:\Users\Admin\AppData\Local\Temp\67de2a5c0d0ade91979ccfe81a81c9ec1da3ee5accf6a359c9d5bec16c77d307.exe"
1⤵
PID:4848

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 4848 -s 576
2⤵
- Program crash
PID:2724

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 4848 -s 616
2⤵
- Program crash
PID:3264

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 4848 -ip 4848
1⤵
PID:5044

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 4848 -ip 4848
1⤵
PID:4592

memory/4848-133-0x00000000007B9000-0x00000000007BE000-memory.dmp

Filesize
20KB

Download
memory/4848-132-0x00000000007BD000-0x00000000007C2000-memory.dmp

Filesize
20KB

Download
memory/4848-134-0x0000000000793000-0x00000000007AB000-memory.dmp

Filesize
96KB

Download