be0c15af7dced1bbf0176a230ed8d4f07b4bb4c8799e1855bd10d2674b530262

Analysis

max time kernel
142s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
13-07-2023 07:50

Target

3000-56-0x0000000000400000-0x000000000044D000-memory.exe
Size

308KB
MD5

bf7908bdc4d6b7d9c6079b1b99325be8
SHA1

4478c385891e896aa8a243e9ebfcb8d29787e8f3
SHA256

be0c15af7dced1bbf0176a230ed8d4f07b4bb4c8799e1855bd10d2674b530262
SHA512

a1136b6936e307db2d637becbc14e7769bddf80c5cb80cef0f87946d9b3723fe2bd2f5d3352ccca6db53ae8f696856b1c21012c9f2995fc35e5fb4445571c250
SSDEEP

6144:YCWMCnPV2bJkDEYwuzsBdhD9dY8sTmTO:LWR9IJy3T4BdhARTe

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

5104 3832 WerFault.exe 3000-56-0x0000000000400000-0x000000000044D000-memory.exe

pid	pid_target	process	target process
5104	3832	WerFault.exe	3000-56-0x0000000000400000-0x000000000044D000-memory.exe

C:\Users\Admin\AppData\Local\Temp\3000-56-0x0000000000400000-0x000000000044D000-memory.exe
"C:\Users\Admin\AppData\Local\Temp\3000-56-0x0000000000400000-0x000000000044D000-memory.exe"
1⤵
PID:3832
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3832 -s 216
  2⤵
  - Program crash
  PID:5104

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 3832 -ip 3832
1⤵
PID:2928