043aa2a68415d7209663d717e1d4fa327c4d62c9b8085210cccaaf0d94e8ab13

Analysis

max time kernel
60s
max time network
52s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
21/12/2022, 19:46

Target

file.exe
Size

284KB
MD5

6aaafe543474291fdb043d36673765c8
SHA1

67b8272f90bd257265e479be7317dfd4ee478f56
SHA256

e0579dc3a1e48845194d9cd9415ae492d375fd59cea0e1adf21866afde152f89
SHA512

3d4cfbb92c68d69fed650903920d1c33abe1f4e397fe70a0f383c8941577076123bcbcd15e8c1334ea47ebf8240d8a65edcf39a383af943d24594ad9b4ed3cb1
SSDEEP

6144:rEFJPGuUxgie4VTU0k35AGBz0Swy+dw9XJ2O4m0vfi:oFYuUuie2TUDAG+TLW9XJYv6

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3592	2324	WerFault.exe	75

C:\Users\Admin\AppData\Local\Temp\file.exe
"C:\Users\Admin\AppData\Local\Temp\file.exe"
1⤵
PID:2324
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2324 -s 1896
  2⤵
  - Program crash
  PID:3592

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 456 -p 2324 -ip 2324
1⤵
PID:3608

memory/2324-133-0x0000000000920000-0x0000000000947000-memory.dmp

Filesize
156KB

Download
memory/2324-132-0x0000000000B69000-0x0000000000B80000-memory.dmp

Filesize
92KB

Download
memory/2324-134-0x0000000000400000-0x000000000084A000-memory.dmp

Filesize
4.3MB

Download
memory/2324-135-0x0000000000B69000-0x0000000000B80000-memory.dmp

Filesize
92KB

Download
memory/2324-136-0x0000000000400000-0x000000000084A000-memory.dmp

Filesize
4.3MB

Download