cf7e65258a8dca60722fcc4a508d0aa6a4841294e48878e956d2c6c5ff6224e1

Analysis

max time kernel
142s
max time network
148s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
01-11-2023 05:46

Target

NEAS.2eefe5b91752cbd7afc8ca535d6376c0.exe
Size

112KB
MD5

2eefe5b91752cbd7afc8ca535d6376c0
SHA1

5332d95f0b76e2c4f5d7c9a185b1e9851e95e781
SHA256

cf7e65258a8dca60722fcc4a508d0aa6a4841294e48878e956d2c6c5ff6224e1
SHA512

897a1640fdfa74cbeecaabe4d8396b2a5d7739d499e9fd66a0e7e60df6cae2052c97fbb5fd0305cdd5c1054d6c9a45c4e0570b7f30d59ea3f6a6f76ca91819c6
SSDEEP

1536:giL6JIy7lnx5IMXbyRevJ2V1+YSbmAisKldRj0HCqqmTw8FmygLr4gSisKldR:giLKIEn7byReYVvSb8VIHnqwFm5EAV

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
764	1564	WerFault.exe	83
3828	1564	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\NEAS.2eefe5b91752cbd7afc8ca535d6376c0.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.2eefe5b91752cbd7afc8ca535d6376c0.exe"
1⤵
PID:1564
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1564 -s 220
  2⤵
  - Program crash
  PID:764
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1564 -s 228
  2⤵
  - Program crash
  PID:3828

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1564 -ip 1564
1⤵
PID:1680

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 500 -p 1564 -ip 1564
1⤵
PID:4644

memory/1564-0-0x0000000000400000-0x0000000000420000-memory.dmp

Filesize
128KB

Download
memory/1564-1-0x0000000000400000-0x0000000000420000-memory.dmp

Filesize
128KB

Download