ac6f49ef538f38c3c151f7f6dc65a3083ac236fe08bc220327d6a7397de7df8c

Analysis

max time kernel
147s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
05/12/2022, 12:25

Target

ac6f49ef538f38c3c151f7f6dc65a3083ac236fe08bc220327d6a7397de7df8c.exe
Size

291KB
MD5

49f6913953d4de36820139b5408eb8f2
SHA1

cc289186c725c43c23a137b208f59dcb6517bad8
SHA256

ac6f49ef538f38c3c151f7f6dc65a3083ac236fe08bc220327d6a7397de7df8c
SHA512

5912cee643c7a82b77e72b3b8913a5817382f387fbc6f5b56f37524a00eaa78a8e536142d729992b85f1d1035016d29635d6f2372dfe00937f64869bbecc9253
SSDEEP

3072:kOgw9iQYWyUHUo7XYozRii6KJwS/tM/x3kKjhIZoaOEOCV5VYO4eeC:xp94n8oo1h3JwSlMZ35jsdxVYO5

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4392	3560	WerFault.exe	80

C:\Users\Admin\AppData\Local\Temp\ac6f49ef538f38c3c151f7f6dc65a3083ac236fe08bc220327d6a7397de7df8c.exe
"C:\Users\Admin\AppData\Local\Temp\ac6f49ef538f38c3c151f7f6dc65a3083ac236fe08bc220327d6a7397de7df8c.exe"
1⤵
PID:3560
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3560 -s 456
  2⤵
  - Program crash
  PID:4392

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 3560 -ip 3560
1⤵
PID:380

memory/3560-132-0x0000000000400000-0x000000000044F000-memory.dmp

Filesize
316KB

Download
memory/3560-133-0x0000000000400000-0x000000000044F000-memory.dmp

Filesize
316KB

Download