8d1119b146c2e8a38c622209cd6aed812b4bf7cd509b703695e384c266b46dd2

Analysis

max time kernel
69s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
19/10/2022, 18:20

Target

8d1119b146c2e8a38c622209cd6aed812b4bf7cd509b703695e384c266b46dd2.exe
Size

65KB
MD5

a25884e7d3e557230177378aca4bf0f0
SHA1

f954f8a6f382a77cf5cad2791875dcdd34b1a26f
SHA256

8d1119b146c2e8a38c622209cd6aed812b4bf7cd509b703695e384c266b46dd2
SHA512

8b4d2ce9f98b09cf5ffbdd4783a143a0e7e4bae18e1e5507bc62496b0fb3868ddcc9cef6ab08937068371b5756fe5c7b7793b2cc6dbf5a9a1cc1f0e375be2ebd
SSDEEP

1536:tHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVtWc++1F:tHoLde/OgV432UcP39hXJZnWcP1F

Score

8^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2748-132-0x0000000000400000-0x0000000000428000-memory.dmp	upx
behavioral2/memory/2748-133-0x0000000000400000-0x0000000000428000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\dextor32.exe	8d1119b146c2e8a38c622209cd6aed812b4bf7cd509b703695e384c266b46dd2.exe

C:\Users\Admin\AppData\Local\Temp\8d1119b146c2e8a38c622209cd6aed812b4bf7cd509b703695e384c266b46dd2.exe
"C:\Users\Admin\AppData\Local\Temp\8d1119b146c2e8a38c622209cd6aed812b4bf7cd509b703695e384c266b46dd2.exe"
1⤵
- Drops file in Windows directory
PID:2748

memory/2748-132-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download
memory/2748-133-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download