5f29123206709eaff7d5683b9b5d4c798633c59204e43e048c4d3046894084f9

Analysis

max time kernel
143s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25-12-2023 19:52

Target

3962931d2917a1ae9263349606948e4f.exe
Size

28KB
MD5

3962931d2917a1ae9263349606948e4f
SHA1

5680c61b8d0772b83cc1e50a8a33059f725d4990
SHA256

5f29123206709eaff7d5683b9b5d4c798633c59204e43e048c4d3046894084f9
SHA512

11d9e8b93b43355633ed426117cf0d7a6042e0fc8bd614e4f5637cc4e8e0f40e6caa40b687c917c4ecdda8b2b073098820f2105ab203d1a2b360fe0aea3df05b
SSDEEP

96:hHFagnj2s7C7q26AgoTfQfa4ho9SfTPW1+X+huw94woltvj5w1UW:hHognis7CBkfa7QC1tww6bvj5weW

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
2212	3192	WerFault.exe	17
3960	3192	WerFault.exe	17

C:\Users\Admin\AppData\Local\Temp\3962931d2917a1ae9263349606948e4f.exe
"C:\Users\Admin\AppData\Local\Temp\3962931d2917a1ae9263349606948e4f.exe"
1⤵
PID:3192
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3192 -s 252
  2⤵
  - Program crash
  PID:2212
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3192 -s 264
  2⤵
  - Program crash
  PID:3960

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 3192 -ip 3192
1⤵
PID:820

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 364 -p 3192 -ip 3192
1⤵
PID:1540

memory/3192-0-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/3192-1-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download