988d762410c06b0f4a34cdab3d1610816fd6505ad9a739c8ab0cc5a83b77ed2f

Analysis

max time kernel
149s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
13-05-2024 11:32

Target

2024-05-13_eb127608fc10e12e130f213e80a2725b_kovter.exe
Size

426KB
MD5

eb127608fc10e12e130f213e80a2725b
SHA1

354af26cb9aa6edbef1f7660ce3ea97a41b1cf07
SHA256

988d762410c06b0f4a34cdab3d1610816fd6505ad9a739c8ab0cc5a83b77ed2f
SHA512

a5f6b78501af32dbae6afdc97ac31e2371df752c257ed7725d21d9af2dbceaedf04cd2d9bbd299eb34e141a92b8334dffdcf35bd60d1630e457c26000efffdc2
SSDEEP

6144:ZSL8ORZiBiWCEpXoSASfnZAUTyHwQTzdZZGIsuDO2IgLUn4b+vzjTq:8LjiEaej0nyQQnDZGIFKRgLSvq

Score

3^/10

Program crash 1 IoCs

Processes:

WerFault.exe

pid pid_target process target process

4620 212 WerFault.exe 2024-05-13_eb127608fc10e12e130f213e80a2725b_kovter.exe

pid	pid_target	process	target process
4620	212	WerFault.exe	2024-05-13_eb127608fc10e12e130f213e80a2725b_kovter.exe

C:\Users\Admin\AppData\Local\Temp\2024-05-13_eb127608fc10e12e130f213e80a2725b_kovter.exe
"C:\Users\Admin\AppData\Local\Temp\2024-05-13_eb127608fc10e12e130f213e80a2725b_kovter.exe"
1⤵
PID:212

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 212 -s 224
2⤵
- Program crash
PID:4620

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 212 -ip 212
1⤵
PID:3968