70666015656b481f8b32b6167bc9b0b1b947bc7619f8a5b3e699f8c9cd15c072

Analysis

max time kernel
141s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
11-06-2024 18:31

Target

Engines/renjusolver/pbrain-RenjuSolver.exe
Size

129KB
MD5

ac281f90ca456a98e19d1fce3260f3d6
SHA1

9ead8e554f87f44c43614f5f8f5677adfdd6e922
SHA256

9f063b3712cc55f60d1df83b7e18de80c65dcd3205cb941955a75a88c468a068
SHA512

600b989fb9e4164a39e463ff6fb742f5835a03ef37986ebbf3492c711993b7bda114c3e2a79b6f8d258b4413ef4bd6ba406f3fc0feffcb46f0f296143bfccc70
SSDEEP

3072:Tf64nMCJhQzsg+MlS3fJteaUZqaz0GV99wHA776q6X0:20MCTTg+ES3fJteaPazVV9+Vq6X0

Score

7^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

Processes:

resource	yara_rule
behavioral16/memory/4500-0-0x0000000000400000-0x00000000005DC000-memory.dmp	upx
behavioral16/memory/4500-1-0x0000000000400000-0x00000000005DC000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\Engines\renjusolver\pbrain-RenjuSolver.exe
"C:\Users\Admin\AppData\Local\Temp\Engines\renjusolver\pbrain-RenjuSolver.exe"
1⤵
PID:4500

memory/4500-0-0x0000000000400000-0x00000000005DC000-memory.dmp

Filesize
1.9MB

Download
memory/4500-1-0x0000000000400000-0x00000000005DC000-memory.dmp

Filesize
1.9MB

Download