8561f52364bb32589e30b2d8af4e70d4ae19ae7227f4abe84985c798270ccc63

Analysis

max time kernel
140s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
12/10/2023, 07:47

Target

08e7bcdfc8c1ec3d60f1ff6a8e1a0cdd413a55e837dc459de40266ff0de7af85.exe
Size

459KB
MD5

b2faabefac295d102b699e975391fa1d
SHA1

6e887b9addde2e34bcdc5ba9ce20e17c54427341
SHA256

08e7bcdfc8c1ec3d60f1ff6a8e1a0cdd413a55e837dc459de40266ff0de7af85
SHA512

4bb8200fa30cf4646d2b0eb20a1dc92864f3f9d39b955a66db5a6f5fb83dde44ae033917eb2853784151a4d570621fd054f52dcb54e382befb276e1eb4b644de
SSDEEP

12288:kLRF20TzS4KVHar4XE6g/Rnn1Zm3hKVyp9s:kL20TJKVHaUXE6eZ1Z2r9

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
4156	4800	WerFault.exe	81
1536	4800	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\08e7bcdfc8c1ec3d60f1ff6a8e1a0cdd413a55e837dc459de40266ff0de7af85.exe
"C:\Users\Admin\AppData\Local\Temp\08e7bcdfc8c1ec3d60f1ff6a8e1a0cdd413a55e837dc459de40266ff0de7af85.exe"
1⤵
PID:4800
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4800 -s 220
  2⤵
  - Program crash
  PID:4156
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4800 -s 240
  2⤵
  - Program crash
  PID:1536

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 4800 -ip 4800
1⤵
PID:4712

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 484 -p 4800 -ip 4800
1⤵
PID:3824