Overview

overview

8

Static

static

8

Segunda_via_pdf.exe

windows7-x64

8

Segunda_via_pdf.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    39s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    23-11-2022 17:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Segunda_via_pdf.exe

  • Size

    272KB

  • MD5

    015a366286f7225f54476ae601cb6f34

  • SHA1

    7e996860bc9cef93163ebd0e2a4c24ea6d2cf71d

  • SHA256

    202c467b9e1b40f11c7db194b1a4461a88bfb8fddc570fd633b4be61c9f277a1

  • SHA512

    4bd970406901c1aa76bb34fec792cf17d796a54c98452fc3f81e9ab4bb92783ea54736268378d36a841df0edee75c6f7a59bb0449a93b2921a9f211f9a7e39e8

  • SSDEEP

    6144:ItFjunCnm8ik6iWUE8ium7ExND16oPJDXBK5ixwMwlXHI9Ehg:eFjunGFihpULiB7ExNB/wJHI9Ey

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\Segunda_via_pdf.exe
    "C:\Users\Admin\AppData\Local\Temp\Segunda_via_pdf.exe"
    1⤵
      PID:880

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/880-54-0x0000000076871000-0x0000000076873000-memory.dmp

      Filesize

      8KB

      Download

    • memory/880-55-0x0000000000400000-0x00000000004BD000-memory.dmp

      Filesize

      756KB

      Download

    • memory/880-56-0x0000000000400000-0x00000000004BD000-memory.dmp

      Filesize

      756KB

      Download