5b2fb8c3b6c8822be5c9fa176cfec702c09bf96f168f27a64f955db17ccf81b9

Analysis

max time kernel
119s
max time network
120s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
10/04/2024, 22:12

Target

5b2fb8c3b6c8822be5c9fa176cfec702c09bf96f168f27a64f955db17ccf81b9.exe
Size

99KB
MD5

4becde7db0aa9f128300deb5a1fadb82
SHA1

d3ec30b0cbbc2f428bf102c5dafcc51b23742233
SHA256

5b2fb8c3b6c8822be5c9fa176cfec702c09bf96f168f27a64f955db17ccf81b9
SHA512

0eaa979204c2528517af1be6b8dea8fa4fbb15bf6ce041ef74535b8bf41eca43767593f9f1c9dcef2cddc28621a368bbefd391ffbf2faa00da65e6c05d3ac39a
SSDEEP

768:jGvbqsQdX5BhGEnOsIzfJ4i4g5p0syi+hvN18K3H8T6++3KI4Fyu8hcLCik5dAyt:CzqsQ5PIt4+/yfeB6r6YcOik5h36lO

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2012-0-0x0000000000400000-0x000000000041B000-memory.dmp	upx
behavioral1/files/0x00340000000149e1-5.dat	upx
behavioral1/memory/2012-101-0x0000000000400000-0x000000000041B000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\5b2fb8c3b6c8822be5c9fa176cfec702c09bf96f168f27a64f955db17ccf81b9.exe
"C:\Users\Admin\AppData\Local\Temp\5b2fb8c3b6c8822be5c9fa176cfec702c09bf96f168f27a64f955db17ccf81b9.exe"
1⤵
PID:2012

C:\My Downloads\Tomb Raider 3 Patch.exe

Filesize
99KB

MD5
94a5beeac2defcf0be5041cbbcdeea87

SHA1
de6815e815eac31dd770d8a360f252ea8e2233ed

SHA256
3fa1170c7711c6959fa450894ab8e4b6f655dd2b8cc58911068562fa1cc401d7

SHA512
fd6e5c1b8d4c61d2b956993e114d85ff58ccd0ebd7770f433cde8a1a45a473e628210088976d327e3e9efde542bf7605c575442ba591fc28fccec4a9032b170b

Download Submit
memory/2012-0-0x0000000000400000-0x000000000041B000-memory.dmp

Filesize
108KB

Download
memory/2012-101-0x0000000000400000-0x000000000041B000-memory.dmp

Filesize
108KB

Download