50c0d80252b1a0dea39414d3d06b17eefbbe89ea4621c726de86fe1f26636b42

Analysis

max time kernel
142s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
04-11-2023 14:36

Target

NEAS.b6628ba9e5235e41ae141fd32605db00.exe
Size

564KB
MD5

b6628ba9e5235e41ae141fd32605db00
SHA1

8c1841d7e905c7bb9b97fea805034c1545f8dbb4
SHA256

50c0d80252b1a0dea39414d3d06b17eefbbe89ea4621c726de86fe1f26636b42
SHA512

ed8d2db263cc9eddbc2647bad384de25465065d148011717056df377f60d8e830a98398ed38cde2ef8d7e36d2517083cf3098b0253bd46390bdc52b12d95ed43
SSDEEP

3072:vZ8RinudiP52xx67lLdEiHDogFcFmKcUsvKwF6RUhJWFvxvMoCYMVgFcFmKcUsvx:v2kgiPA6RKP0Us4RqQFvxk/V0Us

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1224	1512	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\NEAS.b6628ba9e5235e41ae141fd32605db00.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.b6628ba9e5235e41ae141fd32605db00.exe"
1⤵
PID:1512
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1512 -s 216
  2⤵
  - Program crash
  PID:1224

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1512 -ip 1512
1⤵
PID:3004

memory/1512-0-0x0000000000400000-0x000000000048D000-memory.dmp

Filesize
564KB

Download
memory/1512-1-0x0000000000400000-0x000000000048D000-memory.dmp

Filesize
564KB

Download