dacb9aad48869f1349e62dd30eb4aca9eaff7355e67c1611616cd23c0b823934

Analysis

max time kernel
95s
max time network
113s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
15/04/2024, 05:46

Target

17131599069a0e2ee3c772313de436652eb63fc16f458874beccd156253cf564a27491c5be430.dat-decoded.exe
Size

262KB
MD5

135b23d07b760c07b340e87030d40c7c
SHA1

a0f877913bbcba46bb3cc5b6479fdc2593335281
SHA256

dacb9aad48869f1349e62dd30eb4aca9eaff7355e67c1611616cd23c0b823934
SHA512

50fd44c09994bb169a9e3a9bc75424f914af7c9abb2c36feba9ac1f3a765efe8ad14479e2505589aa39413b30f740a547f655501fbc2731c1c18fbe53119904e
SSDEEP

6144:AyynRpQtS0fhjh2NQf6irwJhIKv8nyCbZBNtjzntbZq7H:NyfCS0feNDkFckxA

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4344	1236	WerFault.exe	84

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
1236	17131599069a0e2ee3c772313de436652eb63fc16f458874beccd156253cf564a27491c5be430.dat-decoded.exe
1236	17131599069a0e2ee3c772313de436652eb63fc16f458874beccd156253cf564a27491c5be430.dat-decoded.exe

C:\Users\Admin\AppData\Local\Temp\17131599069a0e2ee3c772313de436652eb63fc16f458874beccd156253cf564a27491c5be430.dat-decoded.exe
"C:\Users\Admin\AppData\Local\Temp\17131599069a0e2ee3c772313de436652eb63fc16f458874beccd156253cf564a27491c5be430.dat-decoded.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:1236
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1236 -s 220
  2⤵
  - Program crash
  PID:4344

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 1236 -ip 1236
1⤵
PID:3356

memory/1236-0-0x0000000000370000-0x00000000003B2000-memory.dmp

Filesize
264KB

Download
memory/1236-1-0x0000000000370000-0x00000000003B2000-memory.dmp

Filesize
264KB

Download
memory/1236-2-0x00000000013A0000-0x00000000016EA000-memory.dmp

Filesize
3.3MB

Download
memory/1236-3-0x0000000000370000-0x00000000003B2000-memory.dmp

Filesize
264KB

Download