15c1952117c92b90f9d4d109e4fb0372edc4ecaaa6f75c1080f526638db760ff

Analysis

max time kernel
148s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
30-12-2023 05:01

Target

0f64927f808872134002e6c476853034.exe
Size

468KB
MD5

0f64927f808872134002e6c476853034
SHA1

b9e32759db2cd93f447a86a4c3320c70bac9d56c
SHA256

15c1952117c92b90f9d4d109e4fb0372edc4ecaaa6f75c1080f526638db760ff
SHA512

6af064ba577e446f462a317d697e1eb89437abc9e1f8fbb53aaf0edab22860840e49c08fbfbb159641a90301b21ee9e0ea7ad550d64b95857aaa4bbd03acb186
SSDEEP

6144:+HmfZ+FNDNTaceRgD/qO5DPRi3sV6QwtaBShaeTPiu5jcczFJLTraf:+HjFTacWYDPl6QwQksUisjz7Xra

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
2868	4668	WerFault.exe	14
1820	4668	WerFault.exe	14

C:\Users\Admin\AppData\Local\Temp\0f64927f808872134002e6c476853034.exe
"C:\Users\Admin\AppData\Local\Temp\0f64927f808872134002e6c476853034.exe"
1⤵
PID:4668
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4668 -s 528
  2⤵
  - Program crash
  PID:2868
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4668 -s 536
  2⤵
  - Program crash
  PID:1820

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4668 -ip 4668
1⤵
PID:2804

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 516 -p 4668 -ip 4668
1⤵
PID:1276

memory/4668-1-0x0000000000410000-0x00000000004D8000-memory.dmp

Filesize
800KB

Download
memory/4668-0-0x0000000000520000-0x0000000000521000-memory.dmp

Filesize
4KB

Download