839ed50521768381522ca9b7e6f5eee3d6d93673a99f7a397ba90bf4c93957c5 | Triage

Analysis

max time kernel
140s
max time network
70s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
20/04/2023, 08:29

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

License Server Win.exe
Size

1.7MB
MD5

70521578b76da841957473c3debe637f
SHA1

f9e60e7a15002ff67f3bc67240ec9da130fbd8c1
SHA256

839ed50521768381522ca9b7e6f5eee3d6d93673a99f7a397ba90bf4c93957c5
SHA512

485aa1427bf22c19c9e7bba8429eaffd57ae6ee16d8d52f6492085ab949a81703673e5f5f43bcf7c70a20e09d6b566166d24602119a8b76b86923012e01af51e
SSDEEP

49152:HUlPX/cB1o17W4IQXV1WxblPhbxNf7/A1KpBJ:HsMB1wIGWxbDVx/A

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/1444-121-0x0000000001310000-0x00000000017F5000-memory.dmp	upx
behavioral1/memory/1444-122-0x0000000001310000-0x00000000017F5000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\License Server Win.exe
"C:\Users\Admin\AppData\Local\Temp\License Server Win.exe"
1⤵
PID:1444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1444-121-0x0000000001310000-0x00000000017F5000-memory.dmp

Filesize
4.9MB

Download
memory/1444-122-0x0000000001310000-0x00000000017F5000-memory.dmp

Filesize
4.9MB

Download