26682c41a7c5982589499bb0197cb4bf4ca1d43b754ab218f5377be3236b06f0

Analysis

max time kernel
147s
max time network
148s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
31-12-2023 12:42

Target

3687f7b36487a1406e61c3227c3cf489.exe
Size

719KB
MD5

3687f7b36487a1406e61c3227c3cf489
SHA1

4cf6798ea770430d1883692a521bb9689f44ab59
SHA256

26682c41a7c5982589499bb0197cb4bf4ca1d43b754ab218f5377be3236b06f0
SHA512

55a2ee611ce6aa93567a94c169f6eb9276b97a22eff1749396654ebccf261828e4435f1657bc1ff791144b5ba64098d942437ecc91001de9c114f26664044542
SSDEEP

12288:ZtRSsFh1CK4Sv0xqOaOAbO3NOEnYQy6OZQAF7U8Tr+f93yM:ZCsFhrv0d0tE5jOr5TsoM

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
2212	3552	WerFault.exe	16
1064	3552	WerFault.exe	16

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 3552 -ip 3552
1⤵
PID:2068

C:\Users\Admin\AppData\Local\Temp\3687f7b36487a1406e61c3227c3cf489.exe
"C:\Users\Admin\AppData\Local\Temp\3687f7b36487a1406e61c3227c3cf489.exe"
1⤵
PID:3552
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3552 -s 220
  2⤵
  - Program crash
  PID:2212
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3552 -s 264
  2⤵
  - Program crash
  PID:1064

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 3552 -ip 3552
1⤵
PID:4772

memory/3552-0-0x0000000000400000-0x00000000004BB000-memory.dmp

Filesize
748KB

Download
memory/3552-1-0x0000000000400000-0x00000000004BB000-memory.dmp

Filesize
748KB

Download