6ddec8bd7676c07c7cd23cb24e9a91c8dedc1d77d53a0474dafb690b1b1875d2

Analysis

max time kernel
128s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
29/08/2023, 19:39

Target

6ddec8bd7676c07c7cd23cb24e9a91c8dedc1d77d53a0474dafb690b1b1875d2.exe
Size

332KB
MD5

d77c8aa07f24739200013cb5717c650e
SHA1

f5ca764d55a85eec0d60dd4e5faff615d9a096de
SHA256

6ddec8bd7676c07c7cd23cb24e9a91c8dedc1d77d53a0474dafb690b1b1875d2
SHA512

293e10a7327ba5744914435bcc0dbfb0fa2156b102222d5096c0faa39358e8317e82520e438b78dc465dcbb07f1b543978ddae9413912d3f1eeda878c58abd29
SSDEEP

768:+hmGD0zyN5e2GV45nCC4rpLYiiW/kiaQthfPsfltjLl5nDc5eu8tZlGFi+qVl1F:+EGDHJKfqtfl5nDUi+c/vt4VGwf

Score

7^/10

upx

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/2656-0-0x0000000000400000-0x0000000000453000-memory.dmp	upx

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1444	2656	WerFault.exe	79

C:\Users\Admin\AppData\Local\Temp\6ddec8bd7676c07c7cd23cb24e9a91c8dedc1d77d53a0474dafb690b1b1875d2.exe
"C:\Users\Admin\AppData\Local\Temp\6ddec8bd7676c07c7cd23cb24e9a91c8dedc1d77d53a0474dafb690b1b1875d2.exe"
1⤵
PID:2656
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2656 -s 236
  2⤵
  - Program crash
  PID:1444

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 2656 -ip 2656
1⤵
PID:4372

memory/2656-0-0x0000000000400000-0x0000000000453000-memory.dmp

Filesize
332KB

Download