546d6951ccdc2137f45748fc68054772bc8b963133f0c7e34270e7d0f1ad2aa4

Analysis

max time kernel
148s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
24/12/2023, 19:53

Target

0f09d9813463c66a42d396cafcba5026.exe
Size

56KB
MD5

0f09d9813463c66a42d396cafcba5026
SHA1

92a7d97dc7089ea5352aefb26fe0699a225c618a
SHA256

546d6951ccdc2137f45748fc68054772bc8b963133f0c7e34270e7d0f1ad2aa4
SHA512

3258eab6f9b110aa24e32ad409f9c95405c10de9659863003005de9b4fee24f902a0d0ecba7398a59ef069e1f21e30deddb6af352b77b2351ecb7f11919ac9bd
SSDEEP

768:/QHTHP9Jcf2rMt8s60MKRmCDh6SMl1NLPMzM7dm7kD1eLKMLO+nWiKYtIw/1H5lH:/SQAMiCRmChMl1NNdm81e2oOo5KyV

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3708	3508	WerFault.exe	14
4216	3508	WerFault.exe	14

C:\Users\Admin\AppData\Local\Temp\0f09d9813463c66a42d396cafcba5026.exe
"C:\Users\Admin\AppData\Local\Temp\0f09d9813463c66a42d396cafcba5026.exe"
1⤵
PID:3508
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3508 -s 396
  2⤵
  - Program crash
  PID:3708
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3508 -s 400
  2⤵
  - Program crash
  PID:4216

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 3508 -ip 3508
1⤵
PID:744

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 456 -p 3508 -ip 3508
1⤵
PID:3068

memory/3508-0-0x0000000000400000-0x0000000000434000-memory.dmp

Filesize
208KB

Download
memory/3508-1-0x0000000000400000-0x0000000000434000-memory.dmp

Filesize
208KB

Download