37e1d41e8a7c463e721cc294f2c5413ad750a81be4aa4fa982673c596c91f567 | Triage

Analysis

max time kernel
118s
max time network
119s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
11/10/2024, 20:46

Sharing

Report Analysis Logs

General

Target

OfficeMalScanner.exe
Size

122KB
MD5

e8e65e62170fae40391501a9ae2f64b7
SHA1

3badac9b841c90a9398102f67914bcb595374a6c
SHA256

6f74145fe6fba3cb4f4d113ba2103eb88cd3c0ada37f868a5fd08e4b7d9ed632
SHA512

a8247439e61729f1ded22d7ff8bb76599c55492e53fbbf9e2f3e9d8706cbb35f64da084a09f7282ef3440813a19ec6dfdb8adde6653f6193f454aaa12fd485f1
SSDEEP

1536:vZd3G3GG3SUNvSObKnxIt5ZsvQkvHOMH3n3vZAJtPuh5Ctqo:v/ARNvSaZsHOMH3n3vZAJtPuh5C3

Score

5^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral9/memory/2888-0-0x00000000001F0000-0x0000000000202000-memory.dmp	upx
behavioral9/memory/2888-2-0x00000000001F0000-0x0000000000202000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\OfficeMalScanner.exe
"C:\Users\Admin\AppData\Local\Temp\OfficeMalScanner.exe"
1⤵
PID:2888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2888-0-0x00000000001F0000-0x0000000000202000-memory.dmp

Filesize
72KB

Download
memory/2888-2-0x00000000001F0000-0x0000000000202000-memory.dmp

Filesize
72KB

Download