7afa0c43cd2db0f40da15479bf155c1a464ae9d23112e13a9880fd5877c00176

Analysis

max time kernel
149s
max time network
159s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
02/12/2022, 02:15

Target

7afa0c43cd2db0f40da15479bf155c1a464ae9d23112e13a9880fd5877c00176.exe
Size

32KB
MD5

7010885798acd2a94bf4464473c5314e
SHA1

a2b1c65d96595c5c5027c6d1901ee464e57c1925
SHA256

7afa0c43cd2db0f40da15479bf155c1a464ae9d23112e13a9880fd5877c00176
SHA512

5126edb155ea59d0ebec143a90cdc160a6e3bd6069a632c08a961ddce638e3dc2af688487a7a5df5817ad8e315d55214f1c2022a2e6ac1b2e6dadbe147a9f794
SSDEEP

96:67yITSKga5NpvQs7/FDxekV9s3g3RZGMWQMSfXA:67yGC8N+O/5xeg2WRZrW9kA

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3600	4828	WerFault.exe	79
1888	4828	WerFault.exe	79

C:\Users\Admin\AppData\Local\Temp\7afa0c43cd2db0f40da15479bf155c1a464ae9d23112e13a9880fd5877c00176.exe
"C:\Users\Admin\AppData\Local\Temp\7afa0c43cd2db0f40da15479bf155c1a464ae9d23112e13a9880fd5877c00176.exe"
1⤵
PID:4828
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4828 -s 260
  2⤵
  - Program crash
  PID:3600
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4828 -s 284
  2⤵
  - Program crash
  PID:1888

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 4828 -ip 4828
1⤵
PID:4724

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 4828 -ip 4828
1⤵
PID:4916

memory/4828-132-0x0000000000400000-0x0000000000413000-memory.dmp

Filesize
76KB

Download