b4620ac5d996a1620ee8cf3ad9256a47138e9143e9686c3840f69afb5b4bb20f

Analysis

max time kernel
138s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
15-03-2024 04:44

Target

ca83d969a8fe141f92a109ee01dfdb78.exe
Size

162KB
MD5

ca83d969a8fe141f92a109ee01dfdb78
SHA1

9b596a68a610be97d715b89a2a3d1f5a30346e97
SHA256

b4620ac5d996a1620ee8cf3ad9256a47138e9143e9686c3840f69afb5b4bb20f
SHA512

0598ce8cad58ec8c6a500cbde4bb9feb6484543034c8fed83d61161d0cb488b76bbdb8269e27b96ce945c6b7be187bb6d5da3105f572a4bc104d3e2b53c49151
SSDEEP

3072:qRrgLBWT2rfahTYFvOFKbWQyz7QfsPt7JeNzrv3/B5N7S2J/2Zrdmm:1ATYahTY62WQDfsPt7w33/d9oZn

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
2080	1572	WerFault.exe	86

C:\Users\Admin\AppData\Local\Temp\ca83d969a8fe141f92a109ee01dfdb78.exe
"C:\Users\Admin\AppData\Local\Temp\ca83d969a8fe141f92a109ee01dfdb78.exe"
1⤵
PID:1572
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1572 -s 272
  2⤵
  - Program crash
  PID:2080

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 448 -p 1572 -ip 1572
1⤵
PID:4124

memory/1572-0-0x0000000000530000-0x000000000055F000-memory.dmp

Filesize
188KB

Download
memory/1572-1-0x00000000001C0000-0x00000000001ED000-memory.dmp

Filesize
180KB

Download
memory/1572-2-0x0000000000530000-0x000000000055F000-memory.dmp

Filesize
188KB

Download