5a608e292b36fdfe7a91f306742f8d20128adb8b72b292715e550673a66c3d91

Analysis

max time kernel
120s
max time network
127s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
29-12-2023 23:49

Target

078366161ebe67020ac842b1582517d2.exe
Size

22KB
MD5

078366161ebe67020ac842b1582517d2
SHA1

1a18e0c09550fb135e5606ce74f6a4995c6a9153
SHA256

5a608e292b36fdfe7a91f306742f8d20128adb8b72b292715e550673a66c3d91
SHA512

65d1e7550c7431379d550ede53de785e35313b5850bf0dbd10cf600338308d9dfedc32c4be06959bdc93f1e3c7b31f2c944b03c3c5c39e4a62a608a82c1a510d
SSDEEP

384:27ln2In7GIYTCjhlEPghoqCpOacYvX9ZXxqkmj01aTqEKzZe1nXrgnlxRv:YJ2U7xMCF3hjCpOaHX9ZXxqj01aOEK0U

Score

7^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2456-0-0x0000000000400000-0x0000000000412000-memory.dmp	upx
behavioral1/memory/2456-3-0x0000000000400000-0x0000000000412000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File opened for modification	C:\Windows\tem.log	078366161ebe67020ac842b1582517d2.exe

C:\Users\Admin\AppData\Local\Temp\078366161ebe67020ac842b1582517d2.exe
"C:\Users\Admin\AppData\Local\Temp\078366161ebe67020ac842b1582517d2.exe"
1⤵
- Drops file in Windows directory
PID:2456

memory/2456-0-0x0000000000400000-0x0000000000412000-memory.dmp

Filesize
72KB

Download
memory/2456-3-0x0000000000400000-0x0000000000412000-memory.dmp

Filesize
72KB

Download