ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb

Analysis

max time kernel
45s
max time network
54s
platform
windows11-21h2_x64
resource
win11-20240419-en
resource tags

arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system
submitted
27-04-2024 22:20

Target

ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb.exe
Size

399KB
MD5

74e946b1aae970cdd7c899628a5701dc
SHA1

07aaa4cc73ce094236a062778b1c507297fe9e67
SHA256

ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb
SHA512

6453efdde27efed3b0a57175b821196f8653ef3760d62b850134bbc6f84f33adf40d74a63d3cb25f73f32e1be2db638dd82d46f9925d03ccf181e8146c717e4a
SSDEEP

6144:SpH8a7OCjVTk/hzF82yGpf+YSyFm+ocNKe1Kyl:Sh8anUWnHYSyFpLl

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4372 8 WerFault.exe ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb.exe

pid	pid_target	process	target process
4372	8	WerFault.exe	ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb.exe

C:\Users\Admin\AppData\Local\Temp\ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb.exe
"C:\Users\Admin\AppData\Local\Temp\ce16cbc6db5b31a2aa80bf0df8f8730b8d9d16b0a495313a4ce5ceb72521f6fb.exe"
1⤵
PID:8

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 8 -s 516
2⤵
- Program crash
PID:4372

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 8 -ip 8
1⤵
PID:1604

memory/8-2-0x0000000001BC0000-0x0000000001C0B000-memory.dmp

Filesize
300KB

Download
memory/8-1-0x0000000001C10000-0x0000000001D10000-memory.dmp

Filesize
1024KB

Download
memory/8-3-0x0000000000400000-0x0000000001A2F000-memory.dmp

Filesize
22.2MB

Download
memory/8-4-0x0000000000400000-0x0000000001A2F000-memory.dmp

Filesize
22.2MB

Download
memory/8-7-0x0000000001BC0000-0x0000000001C0B000-memory.dmp

Filesize
300KB

Download
memory/8-6-0x0000000001C10000-0x0000000001D10000-memory.dmp

Filesize
1024KB

Download