1d58ff2521366355fbae102f91a3e5154c70b5510f9b8d8c92fa62664413e7d2

Analysis

max time kernel
125s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20231020-en
resource tags

arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
submitted
07/11/2023, 14:04

Target

player.exe
Size

320KB
MD5

0ac7fff3c443307f105ff3ac51710f62
SHA1

6008b52e30e76887824378ad1f9eea0ef0d88b82
SHA256

8895083b9a7baed89183c55c4827ad3f052084fb563aa676645ee5ae5bd29655
SHA512

f4a313f08ce4f39251f7fadcc2697da8f6274f7cfdc752513c681b08ec079c0ed4f34b42faec158b928272241009acd74db51e9b4865d7a0c9a203fa2cc7894b
SSDEEP

6144:cdry7+6dBnhPO9yPCEfQVHCUyZmR0+X7dWhmH7Vx30gwwVYX/b4Hl1Y8eTlKySrk:cdrc+SnhPmyPlfQViUamO+X7dWCVxEgu

Score

7^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral4/memory/3216-0-0x0000000000400000-0x00000000005C5000-memory.dmp	upx
behavioral4/memory/3216-2-0x0000000000400000-0x00000000005C5000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\player.exe
"C:\Users\Admin\AppData\Local\Temp\player.exe"
1⤵
PID:3216

memory/3216-0-0x0000000000400000-0x00000000005C5000-memory.dmp

Filesize
1.8MB

Download
memory/3216-1-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/3216-2-0x0000000000400000-0x00000000005C5000-memory.dmp

Filesize
1.8MB

Download
memory/3216-3-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download