b8da6ceb7020992af6a63829e11acaa61b163d3aca81ecdea449f3e517be1ac4

Analysis

max time kernel
91s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
24-12-2023 19:20

Target

0cfa92bc4298d124b373f87307ec88ef.exe
Size

368KB
MD5

0cfa92bc4298d124b373f87307ec88ef
SHA1

d5897b50569c8d9d07d84151e5f43899ce72897c
SHA256

b8da6ceb7020992af6a63829e11acaa61b163d3aca81ecdea449f3e517be1ac4
SHA512

25d1e6b2d5d45277d69e2a7041900dbc870ca10fbf69902dadcb83f1ce98a109ce91de7ed511c123f5fb9f95c3b37d2d34c4e1d7e2799516dcdd60935e9c660d
SSDEEP

6144:RTAp4naqm5GR/0N4Ftn6vicI8qtQQenKDFujBeqSDgzB8jk3E:R041m5Q/0N4L9xYus1NSD2Cg3E

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
1092	4956	WerFault.exe	88
2816	4956	WerFault.exe	88

C:\Users\Admin\AppData\Local\Temp\0cfa92bc4298d124b373f87307ec88ef.exe
"C:\Users\Admin\AppData\Local\Temp\0cfa92bc4298d124b373f87307ec88ef.exe"
1⤵
PID:4956
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4956 -s 324
  2⤵
  - Program crash
  PID:1092
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4956 -s 364
  2⤵
  - Program crash
  PID:2816

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4956 -ip 4956
1⤵
PID:396

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 476 -p 4956 -ip 4956
1⤵
PID:2836

memory/4956-0-0x00000000003F0000-0x0000000000450000-memory.dmp

Filesize
384KB

Download