0e05af5c3eacd033e08e0d72e32663dd6d942ee13e990dcb795b29aeff651a89

Analysis

max time kernel
150s
max time network
168s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
31-12-2023 13:46

Target

38912780e3c91a421c0b6677f7c5dbe3.exe
Size

3.0MB
MD5

38912780e3c91a421c0b6677f7c5dbe3
SHA1

9ca847c0735cecc3c30e2e7eff681bd0aaef6d26
SHA256

0e05af5c3eacd033e08e0d72e32663dd6d942ee13e990dcb795b29aeff651a89
SHA512

b44fc6f686bdffe930e2c39e6a21239990c412294e15289dd7f0bbcb3b5887663e94c4f940c89989604a6dc23350ca699ff181de07934b9e361b424d75429075
SSDEEP

24576:Ne7QuSOna6sIFq+Hwf+uevwoEAI8k0E/h2D4ThNy1SWiWd7WK:EzLaclQmuev/FI85m2E3IPiIn

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
2168	1944	WerFault.exe	88
2480	1944	WerFault.exe	88

C:\Users\Admin\AppData\Local\Temp\38912780e3c91a421c0b6677f7c5dbe3.exe
"C:\Users\Admin\AppData\Local\Temp\38912780e3c91a421c0b6677f7c5dbe3.exe"
1⤵
PID:1944
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1944 -s 220
  2⤵
  - Program crash
  PID:2168
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1944 -s 224
  2⤵
  - Program crash
  PID:2480

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 1944 -ip 1944
1⤵
PID:572

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 472 -p 1944 -ip 1944
1⤵
PID:1716

memory/1944-0-0x0000000000500000-0x000000000080D000-memory.dmp

Filesize
3.1MB

Download