5fbb9e411fa3a0899de205980351ca1d175ffb25b3eadfcc21ee9e78a3c20683

Analysis

max time kernel
142s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
22-04-2024 11:58

Target

SpaceInfo.exe
Size

11KB
MD5

9dbc8f4b5a2b9a8dfc4b04b2d4371cfb
SHA1

3d57e9e616365b4312744f03ce68746450bfb387
SHA256

5fbb9e411fa3a0899de205980351ca1d175ffb25b3eadfcc21ee9e78a3c20683
SHA512

f83e3d0637dfe94595711dfb856cf53a9d4d29ead9db89ab814269900a572a54f61a1a9bc11445e0e59209ee488b8c1addd0de75d0e12f946ac568d9f8694f4a
SSDEEP

192:3VPXz05OVprL2a0+2nXeFXJ9LL3LKLLfwOgh5pJXkj9fGDgT:3RBprL2a0nXc59LL3LKLjwvHkfmg

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1228	3992	WerFault.exe	85

C:\Users\Admin\AppData\Local\Temp\SpaceInfo.exe
"C:\Users\Admin\AppData\Local\Temp\SpaceInfo.exe"
1⤵
PID:3992
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3992 -s 1012
  2⤵
  - Program crash
  PID:1228

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3992 -ip 3992
1⤵
PID:3656

memory/3992-1-0x00000000749D0000-0x0000000075180000-memory.dmp

Filesize
7.7MB

Download
memory/3992-0-0x0000000000C30000-0x0000000000C3A000-memory.dmp

Filesize
40KB

Download
memory/3992-2-0x0000000005D40000-0x00000000062E4000-memory.dmp

Filesize
5.6MB

Download
memory/3992-3-0x0000000005630000-0x00000000056C2000-memory.dmp

Filesize
584KB

Download
memory/3992-4-0x0000000005940000-0x0000000005950000-memory.dmp

Filesize
64KB

Download
memory/3992-5-0x00000000749D0000-0x0000000075180000-memory.dmp

Filesize
7.7MB

Download