7e9a0f8fd6e5618d9089d5120fd52236c8f7e1a42f23a95053acfb278b807182

Analysis

max time kernel
142s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
31/08/2023, 18:15

Target

faba478545bfdedb671ba0b09a01e702_mafia_JC.exe
Size

840KB
MD5

faba478545bfdedb671ba0b09a01e702
SHA1

4912ab44c31683d9a6f4432a7f83cbd991b28389
SHA256

7e9a0f8fd6e5618d9089d5120fd52236c8f7e1a42f23a95053acfb278b807182
SHA512

b1fc4fb446c54ed493cdf6c9f46b2b3e7ad3b2d4319a25b026bc35f6723ac0393e23449fadef8528b744921872469cdc27d4f037bb50049436b2433c28ff5d59
SSDEEP

24576:PKlWndkhe/R0g52y3/mes6c124hBB/QlWLggE9rEEsA:ylWUA6y3eeP024hBdknElA

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4476	3468	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\faba478545bfdedb671ba0b09a01e702_mafia_JC.exe
"C:\Users\Admin\AppData\Local\Temp\faba478545bfdedb671ba0b09a01e702_mafia_JC.exe"
1⤵
PID:3468
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3468 -s 220
  2⤵
  - Program crash
  PID:4476

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3468 -ip 3468
1⤵
PID:4996

memory/3468-1-0x0000000000570000-0x0000000000650060-memory.dmp

Filesize
896KB

Download
memory/3468-2-0x0000000000570000-0x0000000000650060-memory.dmp

Filesize
896KB

Download
memory/3468-0-0x0000000000570000-0x0000000000650060-memory.dmp

Filesize
896KB

Download
memory/3468-3-0x0000000000570000-0x0000000000650060-memory.dmp

Filesize
896KB

Download
memory/3468-4-0x0000000000570000-0x0000000000650060-memory.dmp

Filesize
896KB

Download