245a20192e8a60b33f64b2b7d118c9d5db7cd4a91179df7689a37e8ce7d29d20

Analysis

max time kernel
135s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
09-06-2023 08:03

Target

PK01508Q0014968PKKHI.exe
Size

770KB
MD5

d3dc5a3c9621864bba383e22d08df74e
SHA1

3c8218060391449a2014b517488db08b9a19ea16
SHA256

245a20192e8a60b33f64b2b7d118c9d5db7cd4a91179df7689a37e8ce7d29d20
SHA512

6383874f1ffc186cac5cfd652a1efa43bb69925e2070332b510b2a9722a4a8ae7408571e3a3e0a6ae46b53047f2565f3aea38953aa89e0443ac8f3f3fd4e14ba
SSDEEP

12288:Y2iNUewx/NscEQ+vgXK1HsaDuOv8Bsi66d7CoRZGmH1eG6qNuy3+nVqoh9G/q:Y1iewlqB6p2Oii3rGM6o3+Vqo2/q

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1648	1320	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\PK01508Q0014968PKKHI.exe
"C:\Users\Admin\AppData\Local\Temp\PK01508Q0014968PKKHI.exe"
1⤵
PID:1320
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1320 -s 1116
  2⤵
  - Program crash
  PID:1648

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 420 -p 1320 -ip 1320
1⤵
PID:4180

memory/1320-133-0x0000000000090000-0x0000000000156000-memory.dmp

Filesize
792KB

Download
memory/1320-134-0x0000000004F70000-0x0000000005514000-memory.dmp

Filesize
5.6MB

Download
memory/1320-135-0x00000000049C0000-0x0000000004A52000-memory.dmp

Filesize
584KB

Download
memory/1320-136-0x0000000004C20000-0x0000000004C30000-memory.dmp

Filesize
64KB

Download
memory/1320-137-0x0000000004A60000-0x0000000004A6A000-memory.dmp

Filesize
40KB

Download