7fd3c8dae2f58d1d7d7059eb137e9068301d4c89bc09d8d27cb5e1b7b880d6cb

Analysis

max time kernel
119s
max time network
124s
platform
windows7_x64
resource
win7-20231020-en
resource tags

arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
submitted
22-10-2023 17:16

Target

NEAS.2fa9a75e75ca879fe13f06a55f2e7610.exe
Size

55KB
MD5

2fa9a75e75ca879fe13f06a55f2e7610
SHA1

953a013d7b3d72bc08696e67a1b837a76b0ab00e
SHA256

7fd3c8dae2f58d1d7d7059eb137e9068301d4c89bc09d8d27cb5e1b7b880d6cb
SHA512

3471d54e01a33bbaf73f1cc20dc6f0162d2ee967f9e9aca2eadf22f0739319404527ea3aa43ed5524f8dfaa75fe85686ca8bcb72e81ae3007f15f362e86c0fc2
SSDEEP

768:fllPp7JeTe5MLjH4B5NCPd7m+Z7hl6XmPA+S3y4fBhg6msato84B6Gqib:flEK5SYB5s1Zb6XDC4Hte74B6Zs

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2148-0-0x0000000000400000-0x000000000041B000-memory.dmp	upx
behavioral1/files/0x0007000000016ca2-5.dat	upx
behavioral1/memory/2148-102-0x0000000000400000-0x000000000041B000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\dextor32.exe	NEAS.2fa9a75e75ca879fe13f06a55f2e7610.exe

C:\Users\Admin\AppData\Local\Temp\NEAS.2fa9a75e75ca879fe13f06a55f2e7610.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.2fa9a75e75ca879fe13f06a55f2e7610.exe"
1⤵
- Drops file in Windows directory
PID:2148

C:\Windows\Temp\CKY3 - Bam Margera World Industries Alien Workshop Full Downloader.exe

Filesize
55KB

MD5
2fa9a75e75ca879fe13f06a55f2e7610

SHA1
953a013d7b3d72bc08696e67a1b837a76b0ab00e

SHA256
7fd3c8dae2f58d1d7d7059eb137e9068301d4c89bc09d8d27cb5e1b7b880d6cb

SHA512
3471d54e01a33bbaf73f1cc20dc6f0162d2ee967f9e9aca2eadf22f0739319404527ea3aa43ed5524f8dfaa75fe85686ca8bcb72e81ae3007f15f362e86c0fc2

Download Submit
memory/2148-0-0x0000000000400000-0x000000000041B000-memory.dmp

Filesize
108KB

Download
memory/2148-102-0x0000000000400000-0x000000000041B000-memory.dmp

Filesize
108KB

Download