6c7e3c966257dcbc697b77fe1c859128c1961685b12ef6ddcddae24e9099ec7b

Analysis

max time kernel
79s
max time network
154s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
06/12/2022, 12:34

Target

6c7e3c966257dcbc697b77fe1c859128c1961685b12ef6ddcddae24e9099ec7b.exe
Size

76KB
MD5

06b6e65520e5a82bd501c32f2e067f2f
SHA1

d601d2ae3624a18ff1387464f2a7203942841016
SHA256

6c7e3c966257dcbc697b77fe1c859128c1961685b12ef6ddcddae24e9099ec7b
SHA512

8bb88be89ffd540674c566fde675442b2c331816c1b31955d54431238ed88f8ad353d5da47e59e5d2e747b75b5b9743f7a195e639d43edd60e47616a4313ea5b
SSDEEP

1536:rgdQFBdmWzMmuzMZb76zAuvjlj97E3FuJLrPvzvXTj3/3ErQj3NhOGl2FUEg7BVb:rgaFB4hmOMZb76zAuvjlj97E3FuJLr3E

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
4848	1560	WerFault.exe	81
2432	1560	WerFault.exe	81

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
1560	6c7e3c966257dcbc697b77fe1c859128c1961685b12ef6ddcddae24e9099ec7b.exe

C:\Users\Admin\AppData\Local\Temp\6c7e3c966257dcbc697b77fe1c859128c1961685b12ef6ddcddae24e9099ec7b.exe
"C:\Users\Admin\AppData\Local\Temp\6c7e3c966257dcbc697b77fe1c859128c1961685b12ef6ddcddae24e9099ec7b.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:1560
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1560 -s 468
  2⤵
  - Program crash
  PID:4848
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1560 -s 468
  2⤵
  - Program crash
  PID:2432

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1560 -ip 1560
1⤵
PID:4608

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 528 -p 1560 -ip 1560
1⤵
PID:4792