ffda6d2c03b4e8cf19a1e2624498c3dfd30270f4cb0efeee908d9ca37cf0e1ca

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
25/06/2024, 02:02

Target

ffda6d2c03b4e8cf19a1e2624498c3dfd30270f4cb0efeee908d9ca37cf0e1ca.exe
Size

1.2MB
MD5

89c685c0c13cbd4df04e1a17202fe37e
SHA1

05dc92afedab7b7d7a49cc8e7428c5e3f8c59579
SHA256

ffda6d2c03b4e8cf19a1e2624498c3dfd30270f4cb0efeee908d9ca37cf0e1ca
SHA512

4ae8e5a51280fdeb5ad5927aefb9297dcbd5235e5b0a5c6f3aa54831a6b37fa5829610600a6c38132336985ed804feac728b165c2f26c82b360aa49fc3ecc0fa
SSDEEP

24576:LAHnh+eWsN3skA4RV1Hom2KXcmtcuqulD/+ktDrSXpvNl:mh+ZkldoPKsacuqulToXpV

Score

5^/10

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
behavioral2/memory/5036-0-0x00000000004E0000-0x000000000060F000-memory.dmp	autoit_exe

Program crash 1 IoCs

pid	pid_target	Process	procid_target
224	5036	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\ffda6d2c03b4e8cf19a1e2624498c3dfd30270f4cb0efeee908d9ca37cf0e1ca.exe
"C:\Users\Admin\AppData\Local\Temp\ffda6d2c03b4e8cf19a1e2624498c3dfd30270f4cb0efeee908d9ca37cf0e1ca.exe"
1⤵
PID:5036
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5036 -s 532
  2⤵
  - Program crash
  PID:224

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 5036 -ip 5036
1⤵
PID:4388

memory/5036-0-0x00000000004E0000-0x000000000060F000-memory.dmp

Filesize
1.2MB

Download