4c159bbb7e70d14219149da98c469ff60289ccf7f69d5efc028df1acda963294

Analysis

max time kernel
24s
max time network
34s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
28-03-2023 10:51

Target

MONITORING/AAct_x64.exe
Size

1.5MB
MD5

077734911b1afcaeab423eb792877a92
SHA1

8a71b83da14d3651151aa52b8218495096442753
SHA256

93de3f95b785da406cecf79ba100c05566ea94ea02bdaafbaaba4db222191358
SHA512

903d6b1fd4a9493785a328de4ffe2137c76ef92c74619f3d20cb959a454f34fe962c7ab46ba15a388fb56127a145549db4f2e021c897bfdab71b34a430278c02
SSDEEP

24576:mqbgR3oSF0TA1rKBvHEX54rM+94V3e94s5I5VT+OkHt0hzk7NrvE8geI/c0xyFND:/bgadHEX5zI4Je98DyVHyJk7pvZgeocj

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

Processes:

resource	yara_rule
behavioral7/memory/908-54-0x0000000140000000-0x00000001402E5000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\MONITORING\AAct_x64.exe
"C:\Users\Admin\AppData\Local\Temp\MONITORING\AAct_x64.exe"
1⤵
PID:908

memory/908-54-0x0000000140000000-0x00000001402E5000-memory.dmp

Filesize
2.9MB

Download