886323ecf0715c07c9e330861c3a5db49e9e5851e72db9a43d7be58c6ed2f3d8

Analysis

max time kernel
136s
max time network
159s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
15/11/2023, 05:41

Target

NEAS.082a7eab6e1b49ea2811e9cba26fc500.exe
Size

276KB
MD5

082a7eab6e1b49ea2811e9cba26fc500
SHA1

51766a6f80c1b652f818f290ba4cb771b10d46d5
SHA256

886323ecf0715c07c9e330861c3a5db49e9e5851e72db9a43d7be58c6ed2f3d8
SHA512

297466b95b5a98028d7ee476bf5e8a1a05265c98c2e1e58088b8d957e1b3504b4b02595946493fc4159b6b21b0d587641e10f910231eaf8b588a0ce2296a2293
SSDEEP

3072:j8RinudiP52xx67lLdhciHWO08uFafmHURHAVgn:AkgiPA6RMpO08uF8YU8gn

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3884	2232	WerFault.exe	43
4832	2232	WerFault.exe	43

C:\Users\Admin\AppData\Local\Temp\NEAS.082a7eab6e1b49ea2811e9cba26fc500.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.082a7eab6e1b49ea2811e9cba26fc500.exe"
1⤵
PID:2232
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2232 -s 224
  2⤵
  - Program crash
  PID:3884
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2232 -s 220
  2⤵
  - Program crash
  PID:4832

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 2232 -ip 2232
1⤵
PID:2524

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 456 -p 2232 -ip 2232
1⤵
PID:1364

memory/2232-0-0x0000000000400000-0x0000000000445000-memory.dmp

Filesize
276KB

Download