15c950a01c3ef1756153d1549aea528ce8db267fc3291531541289d674ed43a3

Analysis

max time kernel
154s
max time network
178s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25-12-2023 01:33

Target

20c00b76eb4a7152d64814e319ba591c.exe
Size

838KB
MD5

20c00b76eb4a7152d64814e319ba591c
SHA1

4da2fc19d87477b85ff03ce415fdb1fca1413df6
SHA256

15c950a01c3ef1756153d1549aea528ce8db267fc3291531541289d674ed43a3
SHA512

3c5125232a0cf8a9659c21b6e799b4fbd315ecdff275dc06673cbf03a6e42d62d2c5d1608f19858c713566b7c9cb143b98974ee8bac4eb90ed670af7e684e64b
SSDEEP

12288:skLG5mfu268yqRn1RAhWpNBXn1HBDKgGIewwySkR6e7RstytP9gjoeHQHfwT2+pb:skLImyPi3UYBlBODNwrPhRekco5/8NTP

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3572	4424	WerFault.exe	68
3544	4424	WerFault.exe	68

C:\Users\Admin\AppData\Local\Temp\20c00b76eb4a7152d64814e319ba591c.exe
"C:\Users\Admin\AppData\Local\Temp\20c00b76eb4a7152d64814e319ba591c.exe"
1⤵
PID:4424
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4424 -s 484
  2⤵
  - Program crash
  PID:3572
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4424 -s 492
  2⤵
  - Program crash
  PID:3544

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 4424 -ip 4424
1⤵
PID:3720

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 512 -p 4424 -ip 4424
1⤵
PID:1076

memory/4424-0-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/4424-2-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/4424-5-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download