db8c0f396eed480e441b4b2e283e34de7873c68cc051a8df5701dddec47a4578

Analysis

max time kernel
141s
max time network
135s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
01-04-2023 14:53

Target

UnityAssetsExplorer.exe
Size

658KB
MD5

8ec066a11bf36b1e16dfed57188b0957
SHA1

6b172113499ab2f1d08498dca59cd66d1e1d543c
SHA256

5e8ee40886511050c3f19ab26e433f1dceaae204d9616765a05014a0e91cde45
SHA512

44cc14ac84ae8294f44424b9f8f6fdbe3889e576de0ccac382c419e031385b70f035a9e83f230e53c7b8906144ad00eeb0b2274a1619079184eed7b60ac92919
SSDEEP

12288:Lc5Rn5YGVoqyQmWCwoGlavnaX0FeWyJDfCe+L7kUCpd3t7C75F+EB:SjYGzCdvxIBxfCeoxCBW5BB

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral8/memory/5008-133-0x0000000000400000-0x00000000005F9000-memory.dmp	upx
behavioral8/memory/5008-135-0x0000000000400000-0x00000000005F9000-memory.dmp	upx
behavioral8/memory/5008-140-0x0000000000400000-0x00000000005F9000-memory.dmp	upx

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
5008	UnityAssetsExplorer.exe

C:\Users\Admin\AppData\Local\Temp\UnityAssetsExplorer.exe
"C:\Users\Admin\AppData\Local\Temp\UnityAssetsExplorer.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:5008

memory/5008-133-0x0000000000400000-0x00000000005F9000-memory.dmp

Filesize
2.0MB

Download
memory/5008-134-0x0000000000BE0000-0x0000000000BE1000-memory.dmp

Filesize
4KB

Download
memory/5008-135-0x0000000000400000-0x00000000005F9000-memory.dmp

Filesize
2.0MB

Download
memory/5008-140-0x0000000000400000-0x00000000005F9000-memory.dmp

Filesize
2.0MB

Download