45aa770222a6fba876c9e3f1d5c524c44eaaa59ae9fb5f6ff1363386fee34588

Analysis

max time kernel
135s
max time network
107s
platform
windows10-2004_x64
resource
win10v2004-20231222-en
resource tags

arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
submitted
11-01-2024 05:50

Target

52b41adfd73301b34285bfa97cbd0847.exe
Size

124KB
MD5

52b41adfd73301b34285bfa97cbd0847
SHA1

998833acf2e293c34c4ed703eabf44fd5036e4df
SHA256

45aa770222a6fba876c9e3f1d5c524c44eaaa59ae9fb5f6ff1363386fee34588
SHA512

b9e287de6aefcf048653783ee8e2a66de9f9192eed022e5fc58afa2604a6c3113349c4e42f853230e15b2826f3a0b9ed66e04856f625eb889edcb189f19cb83e
SSDEEP

1536:NytkjyTQ0wU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VewNeG0h/l:6kjxdU0GgAT98t

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
5008	3544	WerFault.exe	16

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
3544	52b41adfd73301b34285bfa97cbd0847.exe

C:\Users\Admin\AppData\Local\Temp\52b41adfd73301b34285bfa97cbd0847.exe
"C:\Users\Admin\AppData\Local\Temp\52b41adfd73301b34285bfa97cbd0847.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:3544
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3544 -s 468
  2⤵
  - Program crash
  PID:5008

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 3544 -ip 3544
1⤵
PID:3708