b5b514868cb20bbf681c9d1dbe486ed203a2fe7dc7a0119d14ec07dd2262efc4

Analysis

max time kernel
142s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
03-10-2022 11:57

Target

b5b514868cb20bbf681c9d1dbe486ed203a2fe7dc7a0119d14ec07dd2262efc4.exe
Size

204KB
MD5

699abea5ce038247f779b5c0a35433a0
SHA1

74430832459a44dae063c1a57e5cb069089ccae4
SHA256

b5b514868cb20bbf681c9d1dbe486ed203a2fe7dc7a0119d14ec07dd2262efc4
SHA512

80672c40fbed00a52fe248660f6d82a6cc2002b240bf27b480a99a3982cc9bb39af758277e8830dc01d2d3855f1a32a539ca8347c0bf34105712ad9ed53c33cd
SSDEEP

3072:1JOFg2GucAU46gNAfTHaMyOv4PD30xjPE4setnYjCuNEDPQhij1AjofzK+0b:/Kc8NATyOv47300e8C/P5Aof2

Score

8^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2300-132-0x0000000000400000-0x0000000000435000-memory.dmp	upx

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4636	2300	WerFault.exe	47

C:\Users\Admin\AppData\Local\Temp\b5b514868cb20bbf681c9d1dbe486ed203a2fe7dc7a0119d14ec07dd2262efc4.exe
"C:\Users\Admin\AppData\Local\Temp\b5b514868cb20bbf681c9d1dbe486ed203a2fe7dc7a0119d14ec07dd2262efc4.exe"
1⤵
PID:2300
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2300 -s 928
  2⤵
  - Program crash
  PID:4636

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 456 -p 2300 -ip 2300
1⤵
PID:4660

memory/2300-132-0x0000000000400000-0x0000000000435000-memory.dmp

Filesize
212KB

Download
memory/2300-134-0x0000000000400000-0x0000000000417000-memory.dmp

Filesize
92KB

Download
memory/2300-137-0x0000000000400000-0x0000000000417000-memory.dmp

Filesize
92KB

Download