5c92122b765883cfd4e5b4f31eca5aa9c57a58625b1a45a1436bef4079b551bf

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
26/07/2024, 04:19

Target

70d6c9c119577468a4a256249ab65800N.exe
Size

76KB
MD5

70d6c9c119577468a4a256249ab65800
SHA1

359ccab6e110fab69c0ac0dd65da0f10ef986318
SHA256

5c92122b765883cfd4e5b4f31eca5aa9c57a58625b1a45a1436bef4079b551bf
SHA512

747a46b7b0c719b8d71bc1c68091397e16a681372810c1006836a4a2fc2f08b5eae8947790aca92fa7c45f336a760f3a3bcd7578f5360fcd35dea8b22189709b
SSDEEP

1536:KHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6k2L5brrU0m/HWTYVipY1oHCd:KHoLde/OgV432UcP39hvF+uYApdK

Score

7^/10

upx

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2584-0-0x0000000000400000-0x0000000000428000-memory.dmp	upx
behavioral1/files/0x0007000000018be9-5.dat	upx
behavioral1/memory/2584-102-0x0000000000400000-0x0000000000428000-memory.dmp	upx

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\driv64.exe	70d6c9c119577468a4a256249ab65800N.exe

C:\Users\Admin\AppData\Local\Temp\70d6c9c119577468a4a256249ab65800N.exe
"C:\Users\Admin\AppData\Local\Temp\70d6c9c119577468a4a256249ab65800N.exe"
1⤵
- Drops file in Windows directory
PID:2584

C:\Windows\Temp\CKY3 - Bam Margera World Industries Alien Workshop Full Downloader.exe

Filesize
76KB

MD5
70d6c9c119577468a4a256249ab65800

SHA1
359ccab6e110fab69c0ac0dd65da0f10ef986318

SHA256
5c92122b765883cfd4e5b4f31eca5aa9c57a58625b1a45a1436bef4079b551bf

SHA512
747a46b7b0c719b8d71bc1c68091397e16a681372810c1006836a4a2fc2f08b5eae8947790aca92fa7c45f336a760f3a3bcd7578f5360fcd35dea8b22189709b

Download Submit
memory/2584-0-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download
memory/2584-102-0x0000000000400000-0x0000000000428000-memory.dmp

Filesize
160KB

Download