fe7852f711234bf22ba820287e2b8050757a11b3b4a9110e82ee9df6334277d3

Analysis

max time kernel
122s
max time network
141s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
02/10/2022, 11:07

Target

fe7852f711234bf22ba820287e2b8050757a11b3b4a9110e82ee9df6334277d3.exe
Size

59KB
MD5

62ca914de9c9f1a7303fe1976ccd1f80
SHA1

23328fff2be503e37d7d5f8c45ef7d13ebc772ea
SHA256

fe7852f711234bf22ba820287e2b8050757a11b3b4a9110e82ee9df6334277d3
SHA512

1f57e775abd51bfc79b8ad6cb093700e94cf5cd9fb451d414ace195e47db540d635839672775513956deae027324cf842450a3565da695da3e57474f63e47cfe
SSDEEP

1536:tHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVtP3:tHoLde/OgV432UcP39hXJZnv

Score

8^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/3924-132-0x0000000000400000-0x0000000000428000-memory.dmp	upx
behavioral2/memory/3924-133-0x0000000000400000-0x0000000000428000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\dextor32.exe	fe7852f711234bf22ba820287e2b8050757a11b3b4a9110e82ee9df6334277d3.exe

C:\Users\Admin\AppData\Local\Temp\fe7852f711234bf22ba820287e2b8050757a11b3b4a9110e82ee9df6334277d3.exe
"C:\Users\Admin\AppData\Local\Temp\fe7852f711234bf22ba820287e2b8050757a11b3b4a9110e82ee9df6334277d3.exe"
1⤵
- Drops file in Windows directory
PID:3924

memory/3924-132-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download
memory/3924-133-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download