c6dd4d12651a2487db615be4077339cb114163bf4365c1074461566fadd00ffc

Analysis

max time kernel
80s
max time network
130s
platform
windows10-2004_x64
resource
win10v2004-20230221-en
resource tags

arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
submitted
23/03/2023, 18:38

Target

new.exe
Size

1.1MB
MD5

0125dff6e7fe781a9974bb0a04fb68c0
SHA1

bc08be0ea07a5708735fa69fd0b9587e66cf15cc
SHA256

c6dd4d12651a2487db615be4077339cb114163bf4365c1074461566fadd00ffc
SHA512

ee55582f0f96087535860acd97a6fc7dd4840625415fcaeccd7af28d2a976738190cb22da4acbfafe9daefedc7b7095c9bf57111123adc37a0e3e428f7a6de50
SSDEEP

24576:oAeZfZfZfZfZfZfZx3Z2XsHUK8ni0U8SU2GU9ZiIHPcbHNOfL/vZapFqGgqRcpsO:9kRRRRRRxJ28P69U8r2GGiIvYtw3Zapi

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
464	3588	WerFault.exe	83
3756	3588	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\new.exe
"C:\Users\Admin\AppData\Local\Temp\new.exe"
1⤵
PID:3588
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3588 -s 508
  2⤵
  - Program crash
  PID:464
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3588 -s 532
  2⤵
  - Program crash
  PID:3756

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 3588 -ip 3588
1⤵
PID:5044

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 532 -p 3588 -ip 3588
1⤵
PID:3068

memory/3588-133-0x0000000000400000-0x0000000000502000-memory.dmp

Filesize
1.0MB

Download
memory/3588-134-0x0000000000400000-0x0000000000502000-memory.dmp

Filesize
1.0MB

Download
memory/3588-135-0x0000000000400000-0x0000000000502000-memory.dmp

Filesize
1.0MB

Download
memory/3588-136-0x00000000005F0000-0x00000000005F1000-memory.dmp

Filesize
4KB

Download
memory/3588-137-0x0000000000600000-0x0000000000601000-memory.dmp

Filesize
4KB

Download