af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc

Analysis

max time kernel
186s
max time network
218s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
04-12-2022 10:00

Target

af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc.exe
Size

326KB
MD5

3736b5e8d91e93799aa194a63669ba4f
SHA1

2630a0c95d8f4234b5d53469d8a075a6266c7756
SHA256

af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc
SHA512

49bc5a501904be65e44a256efd51276dc31153b76ee83476a5b724c87c554c651f178a5ea5e70f7391a8edfff5f20085306982c7be64e21076bdb64696f2dc6c
SSDEEP

6144:P33tj8BBIQq3JuCPBz9OzbO41XW+hHntnyVg/ucTM6ZkK5:P3dj2q3gUcb/cCntyVgGc115

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

364 1512 WerFault.exe af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc.exe

pid	pid_target	process	target process
364	1512	WerFault.exe	af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc.exe

C:\Users\Admin\AppData\Local\Temp\af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc.exe
"C:\Users\Admin\AppData\Local\Temp\af80390a5d4d6865fd652c1ba81e4c4c8f34cc135d028d70975eaa9453eb45cc.exe"
1⤵
PID:1512
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1512 -s 396
  2⤵
  - Program crash
  PID:364

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 1512 -ip 1512
1⤵
PID:424

memory/1512-132-0x0000000002270000-0x000000000229F000-memory.dmp

Filesize
188KB

Download