2f1022d79839af22a39c04c02175a9794294cdef50c14bb2dfe28d0c3224d54e

Analysis

max time kernel
189s
max time network
207s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
29/11/2022, 12:26

Target

2f1022d79839af22a39c04c02175a9794294cdef50c14bb2dfe28d0c3224d54e.exe
Size

20KB
MD5

7702b62a8e9717c0601a6598167437ce
SHA1

8e902442739f7c521452bf17d1ddbac62154f49d
SHA256

2f1022d79839af22a39c04c02175a9794294cdef50c14bb2dfe28d0c3224d54e
SHA512

484f27f28ebe29fd8fac82342fcc906a306fb5e5c3fcfd4263ac1d57b4514b036bc430e0c5bfb5e0e2b40433f1ffcb69bca2dc09218a04c523909feb39de3364
SSDEEP

6:iz3SsE7Mvk22eApxKjg2BORIBvuJKQmQ:w6MJW/K8WORIBvuJ5

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
5116	1996	WerFault.exe	80
4568	1996	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\2f1022d79839af22a39c04c02175a9794294cdef50c14bb2dfe28d0c3224d54e.exe
"C:\Users\Admin\AppData\Local\Temp\2f1022d79839af22a39c04c02175a9794294cdef50c14bb2dfe28d0c3224d54e.exe"
1⤵
PID:1996
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1996 -s 252
  2⤵
  - Program crash
  PID:5116
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1996 -s 264
  2⤵
  - Program crash
  PID:4568

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 1996 -ip 1996
1⤵
PID:3084

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 476 -p 1996 -ip 1996
1⤵
PID:4160

memory/1996-132-0x0000000000400000-0x0000000000416000-memory.dmp

Filesize
88KB

Download
memory/1996-133-0x0000000000400000-0x0000000000416000-memory.dmp

Filesize
88KB

Download