2460bd58a45edb7b9e5904a5a2110d58228227908e4d9b59ddabc028dfa27a31

Analysis

max time kernel
188s
max time network
193s
platform
windows10-2004_x64
resource
win10v2004-20221111-en
resource tags

arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
submitted
02/12/2022, 18:32 UTC

Target

2460bd58a45edb7b9e5904a5a2110d58228227908e4d9b59ddabc028dfa27a31.exe
Size

60KB
MD5

936b7bd23c9bdced640e9ec074f97167
SHA1

adce9963e1f7a3f32b884ea7baaaacf98ac40486
SHA256

2460bd58a45edb7b9e5904a5a2110d58228227908e4d9b59ddabc028dfa27a31
SHA512

d1d53534d36e828b29bcdfee8ee05e69c794c50d5d6a23d9488719c6992d1539f082f8586464c07a72e8e461984054ff16bbbd6acbe2a4b10ef55563a57852f9
SSDEEP

1536:zGNqJ4imHse1wcHgzxW3cZeewIZtpY5zqvR3CPCVBla:zGM4rHsVbPZrw6tiqvtA/

Score

8^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2720-132-0x0000000000400000-0x0000000000422000-memory.dmp	upx
behavioral2/memory/2720-133-0x0000000000400000-0x0000000000422000-memory.dmp	upx

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3112	2720	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\2460bd58a45edb7b9e5904a5a2110d58228227908e4d9b59ddabc028dfa27a31.exe
"C:\Users\Admin\AppData\Local\Temp\2460bd58a45edb7b9e5904a5a2110d58228227908e4d9b59ddabc028dfa27a31.exe"
1⤵
PID:2720
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2720 -s 368
  2⤵
  - Program crash
  PID:3112

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 2720 -ip 2720
1⤵
PID:4824

memory/2720-132-0x0000000000400000-0x0000000000422000-memory.dmp

Filesize
136KB

Download
memory/2720-133-0x0000000000400000-0x0000000000422000-memory.dmp

Filesize
136KB

Download