e9bf40d151c284fb99df39b1376e4db4e4946854541adec8e6b115323da0e6f4

Analysis

max time kernel
115s
max time network
135s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
19/10/2022, 17:27

Target

e9bf40d151c284fb99df39b1376e4db4e4946854541adec8e6b115323da0e6f4.exe
Size

161KB
MD5

a0efc6ff795ae191e95afa38edd990f0
SHA1

2ef0a7351c74e730732ea8cf36c9e4554013f16d
SHA256

e9bf40d151c284fb99df39b1376e4db4e4946854541adec8e6b115323da0e6f4
SHA512

af51950143b334eae418218a0eaf36a01b53045380eb7481f15b3ecd4ac4c1a3f2c7fd2f020894d50cce383e46513a07733f4a21f260a5d5772c9592925f8c6d
SSDEEP

3072:yxTqpdA3f6QNf2IPO4DpmWpAsfYbTOBoefYi6a9k20tAvnkzkuI4L:02pdqfv2IPOGfXf5ovWvakK

Score

8^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/4952-132-0x0000000000400000-0x0000000000428000-memory.dmp	upx
behavioral2/memory/4952-133-0x0000000000400000-0x0000000000428000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\driv64.exe	e9bf40d151c284fb99df39b1376e4db4e4946854541adec8e6b115323da0e6f4.exe

C:\Users\Admin\AppData\Local\Temp\e9bf40d151c284fb99df39b1376e4db4e4946854541adec8e6b115323da0e6f4.exe
"C:\Users\Admin\AppData\Local\Temp\e9bf40d151c284fb99df39b1376e4db4e4946854541adec8e6b115323da0e6f4.exe"
1⤵
- Drops file in Windows directory
PID:4952

memory/4952-132-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download
memory/4952-133-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download