5aa29e3f296797e8908613d6164ca163cea76fdac68d65c5099a3813e0d98729

Analysis

max time kernel
119s
max time network
121s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
26/12/2023, 08:09

Target

5e9c0f1924e37ef206d779d784ab12cd.exe
Size

125KB
MD5

5e9c0f1924e37ef206d779d784ab12cd
SHA1

83454abd65790b23e20384530f8a0fbc59da11d4
SHA256

5aa29e3f296797e8908613d6164ca163cea76fdac68d65c5099a3813e0d98729
SHA512

4f69842a88f5ec70b36b2db216be7f5fae06918bc589a482d8cdb810faa96375408f7d3b2b58e8d8f1cc5fe91f8e4bedfeb79887c7362bdaa5b1c06e7227edfb
SSDEEP

1536:e3PoyymBI4UVVppo5AeQ+Ott1TXMLY4iIg5F5RaL4sBNAt/DYo80Lnr8AE1+N:65640npo5AeQ3/1TcU4iIyPej0OcFU

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1880	2824	WerFault.exe	16

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28
PID 2824 wrote to memory of 1880	2824	5e9c0f1924e37ef206d779d784ab12cd.exe	28

C:\Users\Admin\AppData\Local\Temp\5e9c0f1924e37ef206d779d784ab12cd.exe
"C:\Users\Admin\AppData\Local\Temp\5e9c0f1924e37ef206d779d784ab12cd.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:2824
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2824 -s 252
  2⤵
  - Program crash
  PID:1880

memory/2824-0-0x0000000000400000-0x0000000000420000-memory.dmp

Filesize
128KB

Download
memory/2824-1-0x0000000000020000-0x0000000000040000-memory.dmp

Filesize
128KB

Download
memory/2824-2-0x0000000000020000-0x0000000000040000-memory.dmp

Filesize
128KB

Download