3f066559c2073951086e4ed0bfede6fe6136ae5cb19afa49f39dd2ae85949d38

Analysis

max time kernel
172s
max time network
189s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
19-09-2022 19:18

Target

3f066559c2073951086e4ed0bfede6fe6136ae5cb19afa49f39dd2ae85949d38.exe
Size

57KB
MD5

377569bad10e200c1eef0a021d3ccbf7
SHA1

28d4afa7f55ffa6dbca583291872366f5c90a137
SHA256

3f066559c2073951086e4ed0bfede6fe6136ae5cb19afa49f39dd2ae85949d38
SHA512

f553ef5bdce01d98d2d3c1c3fb6a13af5015649e4a4a13daaff79db644d8c646ffcf371edd0af6b1d474e5dda9b66996e1efd880335d49de83d41171b46aad15
SSDEEP

1536:tHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVtt/:tHoLde/OgV432UcP39hXJZnt/

Score

8^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2200-132-0x0000000000400000-0x0000000000428000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\dextor32.exe	3f066559c2073951086e4ed0bfede6fe6136ae5cb19afa49f39dd2ae85949d38.exe

C:\Users\Admin\AppData\Local\Temp\3f066559c2073951086e4ed0bfede6fe6136ae5cb19afa49f39dd2ae85949d38.exe
"C:\Users\Admin\AppData\Local\Temp\3f066559c2073951086e4ed0bfede6fe6136ae5cb19afa49f39dd2ae85949d38.exe"
1⤵
- Drops file in Windows directory
PID:2200

memory/2200-132-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download