1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9

Analysis

max time kernel
196s
max time network
210s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
28/11/2022, 04:01

Target

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9.exe
Size

179KB
MD5

1ee116e38cc5709401e181495991811d
SHA1

6b4fae97c212a4cdab1be2f480797b53784d0210
SHA256

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
SHA512

cd37518399cf9299a77f64907b4e843744e65ea1cec3b293835d35e1e59278fbc93e17bce82d984de32110172459a8d3441895a6e80976aaa0ecfaa498db1386
SSDEEP

3072:6JIRH8MiBKlghdTeDco1Hxbu30/BLEypsLS88:MsH8MgrTeVN/tEyps

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
2636	1632	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9.exe
"C:\Users\Admin\AppData\Local\Temp\1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9.exe"
1⤵
PID:1632
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1632 -s 440
  2⤵
  - Program crash
  PID:2636

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 1632 -ip 1632
1⤵
PID:1820