3d63388bfa3a51371069d8a0546bda0a2591f5bdf90fd8c6c6f26c0f9a05268a

Analysis

max time kernel
51s
max time network
51s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
27/06/2024, 20:49

Target

3d63388bfa3a51371069d8a0546bda0a2591f5bdf90fd8c6c6f26c0f9a05268a.exe
Size

535KB
MD5

a99a3dc58ce349437491618bd0817993
SHA1

096c189cc936b1d949a8e829021552d1fdabd045
SHA256

3d63388bfa3a51371069d8a0546bda0a2591f5bdf90fd8c6c6f26c0f9a05268a
SHA512

76240c7ceec3bdcc684bbe78e3740c40b0abd724dfa8563346655c89dce3d00ce8d52f98ce9722981def0058aa50f1c68f0e014be4ac97824abb23efa2f4c473
SSDEEP

12288:5HMIKTwoUSLPeodKYf0jEB0ma8T92nxFu4o2R+Y59VMBDU3BjC8o:5ZKTwoUSLPLl+mZTQxFu4o6+Y59SDAjb

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3052	5092	WerFault.exe	82
2108	5092	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\3d63388bfa3a51371069d8a0546bda0a2591f5bdf90fd8c6c6f26c0f9a05268a.exe
"C:\Users\Admin\AppData\Local\Temp\3d63388bfa3a51371069d8a0546bda0a2591f5bdf90fd8c6c6f26c0f9a05268a.exe"
1⤵
PID:5092
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5092 -s 392
  2⤵
  - Program crash
  PID:3052
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 5092 -s 416
  2⤵
  - Program crash
  PID:2108

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 5092 -ip 5092
1⤵
PID:3328

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 536 -p 5092 -ip 5092
1⤵
PID:5000

memory/5092-0-0x0000000000610000-0x0000000000621000-memory.dmp

Filesize
68KB

Download
memory/5092-1-0x0000000000630000-0x0000000000631000-memory.dmp

Filesize
4KB

Download
memory/5092-2-0x0000000000740000-0x0000000000752000-memory.dmp

Filesize
72KB

Download