e6b1ea82c2aa4dbdcf80bade33a7c954dc5153c57af1268488a870bdab5dcc79

Analysis

max time kernel
135s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
16/10/2023, 18:26

Target

NEAS.80665d9499ca0ea70c32b996a0d6e060.exe
Size

260KB
MD5

80665d9499ca0ea70c32b996a0d6e060
SHA1

2b0f6363824fa851c20bffcf565e9ce2d514c315
SHA256

e6b1ea82c2aa4dbdcf80bade33a7c954dc5153c57af1268488a870bdab5dcc79
SHA512

a7c1342d9381f9635ed3a6cf00b9618b1063d87e142d77d46389a37ccc8ea0de29eaaa4b40aabce5f4c4d4aa0a3000ebf2acf4f242a966cc30cd33a12c92ea48
SSDEEP

3072:48RinudiP52xx67lLdhiiHSiS1WdTCn93OGey/Zh:NkgiPA6RSLihTCndOGeK

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3836	2476	WerFault.exe	82
4332	2476	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\NEAS.80665d9499ca0ea70c32b996a0d6e060.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.80665d9499ca0ea70c32b996a0d6e060.exe"
1⤵
PID:2476
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2476 -s 220
  2⤵
  - Program crash
  PID:3836
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2476 -s 224
  2⤵
  - Program crash
  PID:4332

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 2476 -ip 2476
1⤵
PID:3832

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 508 -p 2476 -ip 2476
1⤵
PID:4660

memory/2476-0-0x0000000000400000-0x0000000000441000-memory.dmp

Filesize
260KB

Download