33e5946509d5d5758ff3795f4007f3526e010600924b390f9baf746b738b6af1

Analysis

max time kernel
142s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25-12-2023 19:39

Target

38a2f60e8d70a70f398c230a04d616dd.exe
Size

535KB
MD5

38a2f60e8d70a70f398c230a04d616dd
SHA1

73bce7befbba4fd020e3327c30af10047cd40184
SHA256

33e5946509d5d5758ff3795f4007f3526e010600924b390f9baf746b738b6af1
SHA512

9861f11effd0f9f8823ffbd2aecb0e4c9f78455332a4ea9fa371b15c9bf2ff67067d8e0e5aef93430a08a43b2380674250f1636f5a2d74108f58cafefe0cd6c0
SSDEEP

6144:FiHXuZSjFDLhRis0iLmgt/i97NiNGKjtag6pAOQYipgn/C7Urctpxnb4EhuZ8pSR:FiH+ZSpD1KgtaHiGKsB3/CwrQPn8o3N

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
220	1676	WerFault.exe	58
4256	1676	WerFault.exe	58

C:\Users\Admin\AppData\Local\Temp\38a2f60e8d70a70f398c230a04d616dd.exe
"C:\Users\Admin\AppData\Local\Temp\38a2f60e8d70a70f398c230a04d616dd.exe"
1⤵
PID:1676
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1676 -s 536
  2⤵
  - Program crash
  PID:220
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1676 -s 536
  2⤵
  - Program crash
  PID:4256

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 1676 -ip 1676
1⤵
PID:544

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 496 -p 1676 -ip 1676
1⤵
PID:60

memory/1676-3-0x0000000000790000-0x0000000000890000-memory.dmp

Filesize
1024KB

Download
memory/1676-4-0x0000000000400000-0x000000000048DF28-memory.dmp

Filesize
567KB

Download