41d6e4fab4749ecbe98cbcff266bb34cd9c36409b362b7e1cbd762df41edb669

Analysis

max time kernel
142s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20231020-en
resource tags

arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
submitted
15/11/2023, 01:08

Target

NEAS.f2a387bc1020f50aaafef0deb58ac850.exe
Size

14KB
MD5

f2a387bc1020f50aaafef0deb58ac850
SHA1

ec27b7d07fa6ec4a3ab74142d93fa3c76a90aa8c
SHA256

41d6e4fab4749ecbe98cbcff266bb34cd9c36409b362b7e1cbd762df41edb669
SHA512

e38b401971a9c9dcb072145bf6cd9aadd0695ac2de0112604b795e99d7042f3d6de299f664e136ab8ed6eff34a38cc94cd28c3793bee4caf52cea3574d3bdb25
SSDEEP

384:6tE1Zm2NL00000001g4yDlDE045HdoE8oE8oE8oE8o:tZRN00000006rJA/L8L8L8L8

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4760	2892	WerFault.exe	85

C:\Users\Admin\AppData\Local\Temp\NEAS.f2a387bc1020f50aaafef0deb58ac850.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.f2a387bc1020f50aaafef0deb58ac850.exe"
1⤵
PID:2892
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2892 -s 216
  2⤵
  - Program crash
  PID:4760

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 2892 -ip 2892
1⤵
PID:1932

memory/2892-0-0x0000000000400000-0x000000000040A000-memory.dmp

Filesize
40KB

Download