139660b613701f92126f8c58494ccf4468a6d499ad0d14ebd180f4b78dbc4e8e

Analysis

max time kernel
148s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
30/12/2023, 12:31

Target

1896a3e0c0902a0610a1aa17a188fba5.exe
Size

464KB
MD5

1896a3e0c0902a0610a1aa17a188fba5
SHA1

714517a083ae095b62d81b62112507caee1cd286
SHA256

139660b613701f92126f8c58494ccf4468a6d499ad0d14ebd180f4b78dbc4e8e
SHA512

521513df6ee8ea8809ae9a2b33ff511fd1c8f8bb73976f2c2a611ae533c2907f18b9b16dbfb9b348eff32434e005dc0a495c9b28801109d6d635e132d8115d6e
SSDEEP

12288:ccelvyF+8egeI8hW/E8OBH8LPjbpJbR5WbFTZlIij81L4QMf:ccelvyFcgelW/E8m8LPPpJbR5WNZmaQ4

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
2372	4692	WerFault.exe	16

C:\Users\Admin\AppData\Local\Temp\1896a3e0c0902a0610a1aa17a188fba5.exe
"C:\Users\Admin\AppData\Local\Temp\1896a3e0c0902a0610a1aa17a188fba5.exe"
1⤵
PID:4692
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4692 -s 524
  2⤵
  - Program crash
  PID:2372

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4692 -ip 4692
1⤵
PID:4372

memory/4692-0-0x0000000000540000-0x000000000058D000-memory.dmp

Filesize
308KB

Download
memory/4692-1-0x0000000000540000-0x000000000058D000-memory.dmp

Filesize
308KB

Download