c8a496dcf94d5d246dec0747f139957709b63412f48d9a1591ca5e771a988636 | Triage

Analysis

max time kernel
122s
max time network
125s
platform
windows7_x64
resource
win7-20240611-en
resource tags

arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
submitted
04-07-2024 17:59

Sharing

Report Analysis Logs

General

Target

upnp.exe
Size

12KB
MD5

13804f8dc4e72ba103d5e34de895c9db
SHA1

03d7a0500ccb2fef3222ed1eb55f2cbedbb8b8c5
SHA256

da659d8c05cfcb5f0abe167191665359123643000d12140836c28d204294ceb6
SHA512

9abb98795a1b1c142c50c7c110966b4249972de5b1f40445b27d70c3127140b0ddaaada1d92297e96ffd71177b12cd87749953ffdcf6e5da7803b9f9527d7652
SSDEEP

192:NfPZyzqwizgU1sxCa49gqiVpEu6Tg/g7mj2D4VClx1RZ2UHnpoDkBTVh:N3Zyz8gCda49gTFJ/g7mY2CLtHnCDk/

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

Processes:

resource	yara_rule
behavioral20/memory/2192-0-0x0000000000400000-0x000000000040D000-memory.dmp	upx
behavioral20/memory/2192-2-0x0000000000400000-0x000000000040D000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\upnp.exe
"C:\Users\Admin\AppData\Local\Temp\upnp.exe"
1⤵
PID:2192

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2192-0-0x0000000000400000-0x000000000040D000-memory.dmp

Filesize
52KB

Download
memory/2192-2-0x0000000000400000-0x000000000040D000-memory.dmp

Filesize
52KB

Download