b66a494e070a7eba21120fd98bfe8e60179be499b96b18058299e225747c1f40

Analysis

max time kernel
144s
max time network
127s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
16/03/2023, 04:37

Target

b66a494e070a7eba21120fd98bfe8e60179be499b96b18058299e225747c1f40.exe
Size

751KB
MD5

1f3db8af64889c15223ed7de05b86413
SHA1

197dc03bb4cf5de05e5011be616f1341ac6a8b2e
SHA256

b66a494e070a7eba21120fd98bfe8e60179be499b96b18058299e225747c1f40
SHA512

d5eafa092b0aa4144892207c901bb8c4893c0ae96acbe595a5358bb2d01dcd67a9a7d46aaa0cdd5a9200e7f19c5e8e7c68b7291f83eaf785980534820bc77bf8
SSDEEP

12288:aLaNfa2/WaU1WuiC+92lVczlKLGmsirZcytYOaLUmMPJGRTwE2+x:aj71HiCq2QwiirZ3qoJTPe

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
2336	4160	WerFault.exe	84

C:\Users\Admin\AppData\Local\Temp\b66a494e070a7eba21120fd98bfe8e60179be499b96b18058299e225747c1f40.exe
"C:\Users\Admin\AppData\Local\Temp\b66a494e070a7eba21120fd98bfe8e60179be499b96b18058299e225747c1f40.exe"
1⤵
PID:4160
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4160 -s 1120
  2⤵
  - Program crash
  PID:2336

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 4160 -ip 4160
1⤵
PID:3584

memory/4160-133-0x0000000000160000-0x0000000000222000-memory.dmp

Filesize
776KB

Download
memory/4160-134-0x0000000005090000-0x0000000005634000-memory.dmp

Filesize
5.6MB

Download
memory/4160-135-0x0000000004BE0000-0x0000000004C72000-memory.dmp

Filesize
584KB

Download
memory/4160-136-0x0000000004DA0000-0x0000000004DAA000-memory.dmp

Filesize
40KB

Download
memory/4160-137-0x0000000004BB0000-0x0000000004BC0000-memory.dmp

Filesize
64KB

Download