952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f

Analysis

max time kernel
147s
max time network
152s
platform
windows11-21h2_x64
resource
win11-20240412-en
resource tags

arch:x64arch:x86image:win11-20240412-enlocale:en-usos:windows11-21h2-x64system
submitted
22-04-2024 23:12

Target

952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f.exe
Size

361KB
MD5

0fdb5d0d67615078e6cb62eb151939a1
SHA1

d884e0d47eb12f57fd911b9cfd1b5bc703168557
SHA256

952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f
SHA512

dc43ab0e61375482ef87da23bb4b209b8408eed550731077f644b153408aa39adce75f342515b29793ddf966a6d7d6874deee54f391e0681b00132cab7257625
SSDEEP

6144:pw/QneSXlY+LieFnDGU3k8QVvkBcHITRwZzqhw5M0FS0dl:p+QneSXlXLiqmVPIT20hw7Nl

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

1440 1324 WerFault.exe 952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f.exe

pid	pid_target	process	target process
1440	1324	WerFault.exe	952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f.exe

C:\Users\Admin\AppData\Local\Temp\952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f.exe
"C:\Users\Admin\AppData\Local\Temp\952cb5e81572051cbdc9b1491b2169d98403f98c20a99f218a2a3f19cd5a9c9f.exe"
1⤵
PID:1324
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 1324 -s 1292
  2⤵
  - Program crash
  PID:1440

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 1324 -ip 1324
1⤵
PID:1240

memory/1324-1-0x0000000002DB0000-0x0000000002EB0000-memory.dmp

Filesize
1024KB

Download
memory/1324-2-0x0000000003200000-0x000000000324B000-memory.dmp

Filesize
300KB

Download
memory/1324-3-0x0000000000400000-0x0000000002C3D000-memory.dmp

Filesize
40.2MB

Download
memory/1324-6-0x0000000002DB0000-0x0000000002EB0000-memory.dmp

Filesize
1024KB

Download
memory/1324-7-0x0000000003200000-0x000000000324B000-memory.dmp

Filesize
300KB

Download