cc0b07ebe75b6859111488738262fcbd1a35e6f43c155f7a1a671dafb07afbc2

Analysis

max time kernel
166s
max time network
170s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
29/10/2022, 15:20

Target

cc0b07ebe75b6859111488738262fcbd1a35e6f43c155f7a1a671dafb07afbc2.exe
Size

130KB
MD5

201b12cc9da0bb0a066dc101348e77f5
SHA1

23d87bdb576166c7557ff9dee2ad7d2d98e30744
SHA256

cc0b07ebe75b6859111488738262fcbd1a35e6f43c155f7a1a671dafb07afbc2
SHA512

d13389260325f220f8954536efbf431065ebd4e9fdb923096b0e9cb09891ec4651a26137cff241cc544c96bb692dab8f01bd5fcd3e31b211b1aa56a909bb0ffe
SSDEEP

768:8F57x2Cj+YBn8uRCPSjM6C1wZlcQCpDkNxWTcYpvVjzpyvxLAOupAuJU8pmaw5A0:8FRx2Re56c7HXWThpngxLAOup73w5Xy

Score

8^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/4580-132-0x0000000031430000-0x0000000031463000-memory.dmp	upx

Program crash 1 IoCs

pid	pid_target	Process	procid_target
4424	4580	WerFault.exe	31

C:\Users\Admin\AppData\Local\Temp\cc0b07ebe75b6859111488738262fcbd1a35e6f43c155f7a1a671dafb07afbc2.exe
"C:\Users\Admin\AppData\Local\Temp\cc0b07ebe75b6859111488738262fcbd1a35e6f43c155f7a1a671dafb07afbc2.exe"
1⤵
PID:4580
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4580 -s 304
  2⤵
  - Program crash
  PID:4424

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4580 -ip 4580
1⤵
PID:3644

memory/4580-132-0x0000000031430000-0x0000000031463000-memory.dmp

Filesize
204KB

Download