Analysis Overview
score
7/10
SHA256
1ed75e65d463410845b6200204f3cb6ccad9eaffcfa468d6fe8df0dc3a944aca
Threat Level: Shows suspicious behavior
The file Loader.exe was found to be: Shows suspicious behavior.
Malicious Activity Summary
Themida packer
Unsigned PE
MITRE ATT&CK
N/A
Analysis: static1
Detonation Overview
Reported
2024-04-11 22:59
Signatures
Themida packer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-04-11 22:59
Reported
2024-04-11 23:00
Platform
win10-20240404-en
Max time kernel
15s
Max time network
17s
Command Line
"C:\Users\Admin\AppData\Local\Temp\Loader.exe"
Signatures
Themida packer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Processes
C:\Users\Admin\AppData\Local\Temp\Loader.exe
"C:\Users\Admin\AppData\Local\Temp\Loader.exe"
Network
N/A
Files
memory/4800-0-0x00007FF6A5530000-0x00007FF6A61F3000-memory.dmp