54242372db09c55323dc9e6829260fc6ee5719658250685c4becb2d82b0120c3

Analysis

max time kernel
142s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
23-08-2023 15:35

Target

safari.xml
Size

232B
MD5

f19c3e667a8a40fd8c0fb809c001be36
SHA1

4aa93a0bebb1c5cffa64be520ac99ff42f81ab21
SHA256

54242372db09c55323dc9e6829260fc6ee5719658250685c4becb2d82b0120c3
SHA512

95b0c82525790fd55e83c4849cb6d2868cca36dd02ad6ceb89bdba1b4852b5808f95c4f2a006e37eacf01a8e872be8f2795d4a11b3891def7e8c9438f8c8f99f

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
980	1256	WerFault.exe	79

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\safari.xml"
1⤵
PID:1256
- C:\Windows\system32\WerFault.exe
  C:\Windows\system32\WerFault.exe -u -p 1256 -s 480
  2⤵
  - Program crash
  PID:980

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 408 -p 1256 -ip 1256
1⤵
PID:3496

memory/1256-0-0x00007FF822910000-0x00007FF822920000-memory.dmp

Filesize
64KB

Download
memory/1256-1-0x00007FF862890000-0x00007FF862A85000-memory.dmp

Filesize
2.0MB

Download
memory/1256-2-0x00007FF862890000-0x00007FF862A85000-memory.dmp

Filesize
2.0MB

Download
memory/1256-3-0x00007FF860610000-0x00007FF8608D9000-memory.dmp

Filesize
2.8MB

Download
memory/1256-4-0x00007FF822910000-0x00007FF822920000-memory.dmp

Filesize
64KB

Download
memory/1256-5-0x00007FF862890000-0x00007FF862A85000-memory.dmp

Filesize
2.0MB

Download