7c9805c8b00e8154700e1cafef63cd4d62152b2ec5bec038d7e32c9f128eca9e

Analysis

max time kernel
90s
max time network
122s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
23-02-2023 22:56

Target

7C9805C8B00E8154700E1CAFEF63CD4D62152B2EC5BEC.exe
Size

384KB
MD5

a10dc6b42cc3fb9760bab497980660c8
SHA1

f33d25561d78ae7c4f6ba273582aae78f08726fd
SHA256

7c9805c8b00e8154700e1cafef63cd4d62152b2ec5bec038d7e32c9f128eca9e
SHA512

a9bef4307ed352bdc4d10d445f8ec6fb7e006360f2e1406ee910d1ce90590fd9619a0b9570c4371e534e2bc67f663af2148ec1090b352ce71de38292471da532
SSDEEP

6144:TniQx54q/PzfXxbtFy9mZ9Ohnc3sHysGuiIirvdg109zMSqoL:TnVx55rfXU9mcuVhIirvdcf/Q

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

460 3144 WerFault.exe 7C9805C8B00E8154700E1CAFEF63CD4D62152B2EC5BEC.exe

pid	pid_target	process	target process
460	3144	WerFault.exe	7C9805C8B00E8154700E1CAFEF63CD4D62152B2EC5BEC.exe

C:\Users\Admin\AppData\Local\Temp\7C9805C8B00E8154700E1CAFEF63CD4D62152B2EC5BEC.exe
"C:\Users\Admin\AppData\Local\Temp\7C9805C8B00E8154700E1CAFEF63CD4D62152B2EC5BEC.exe"
1⤵
PID:3144

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 3144 -s 264
2⤵
- Program crash
PID:460

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 3144 -ip 3144
1⤵
PID:3372

memory/3144-133-0x0000000002240000-0x0000000002286000-memory.dmp

Filesize
280KB

Download
memory/3144-134-0x00000000005B0000-0x00000000005B1000-memory.dmp

Filesize
4KB

Download