23a8dc27fd4913e0e8750c33c601dc4c62052b389f3b16efe78fa55387b9ecd2

Analysis

max time kernel
98s
max time network
118s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
26/12/2023, 11:55

Target

6c761a03cdea7508b36bead01c646c4b.exe
Size

3.9MB
MD5

6c761a03cdea7508b36bead01c646c4b
SHA1

52a6668c44174e1a64b165c603b476c61b775b89
SHA256

23a8dc27fd4913e0e8750c33c601dc4c62052b389f3b16efe78fa55387b9ecd2
SHA512

056bfb0f83cf0926c03d554d2d2945c18eb42509d136051fd6d3e10440460587f1a66a5cc418a98264de868b5a0ffb6efa688775ebec7640c9968e3d8d5aaa9a
SSDEEP

49152:qJ4JAbJ6YswFFW7Bhgwb3sQg2ebaBKmGZc7gwbdz1bx9hw2mcwD7gwb3sQg2ebaX:q7bVFFKFb+2kqV5Blx9hLkTb+2kqV5h

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
1952	5032	WerFault.exe	86
2196	5032	WerFault.exe	86

C:\Users\Admin\AppData\Local\Temp\6c761a03cdea7508b36bead01c646c4b.exe
"C:\Users\Admin\AppData\Local\Temp\6c761a03cdea7508b36bead01c646c4b.exe"
1⤵
PID:5032
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5032 -s 344
  2⤵
  - Program crash
  PID:1952
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5032 -s 164
  2⤵
  - Program crash
  PID:2196

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 5032 -ip 5032
1⤵
PID:1792

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 520 -p 5032 -ip 5032
1⤵
PID:1684

memory/5032-0-0x0000000000400000-0x00000000004E5000-memory.dmp

Filesize
916KB

Download
memory/5032-1-0x0000000000400000-0x00000000004E5000-memory.dmp

Filesize
916KB

Download