d427af5e4932ddf6419403165a18ee3f8a79103c14ce6b22cebfc00e966c3972

Analysis

max time kernel
74s
max time network
133s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
06-12-2022 19:58

Target

d427af5e4932ddf6419403165a18ee3f8a79103c14ce6b22cebfc00e966c3972.exe
Size

44KB
MD5

85c2775f09f414884779086b6471c7f1
SHA1

d411e27816e9ec5de59718389e4ebb95af0f4a57
SHA256

d427af5e4932ddf6419403165a18ee3f8a79103c14ce6b22cebfc00e966c3972
SHA512

ed60a56d50cbb3dfacd65f25c1521d2b3afe50ad3abc8f0ae5982b99bec38554994fd6e1ae901e55cb729fcceb2e902699465e8c61f9eaa23cf53b2775132739
SSDEEP

768:p0CgMaIqv6G2pY+dQ7vRj7GWpgykmDB3qXZ+i0/DnQwq0IHq6xKgbazi6A3jxUu:WriK8YT7vN6WDY0/RqfxKqaDA3jx

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1204	2808	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\d427af5e4932ddf6419403165a18ee3f8a79103c14ce6b22cebfc00e966c3972.exe
"C:\Users\Admin\AppData\Local\Temp\d427af5e4932ddf6419403165a18ee3f8a79103c14ce6b22cebfc00e966c3972.exe"
1⤵
PID:2808
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2808 -s 264
  2⤵
  - Program crash
  PID:1204

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 188 -p 2808 -ip 2808
1⤵
PID:1380

memory/2808-132-0x0000000000400000-0x000000000040E000-memory.dmp

Filesize
56KB

Download