Overview

overview

10

Static

static

ZIRAT BANK...JI.exe

windows7_x64

10

ZIRAT BANK...JI.exe

windows10_x64

1

Resubmissions

16-06-2020 09:51

200616-esgd48lx3e 10

26-05-2020 12:05

200526-67qev7hzae 10

Analysis

  • max time kernel
    128s
  • max time network
    42s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    16-06-2020 09:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ZIRAT BANKA.IFT MESAJI.exe

  • Size

    1.2MB

  • MD5

    96463f1796847224b85a96752b59ff17

  • SHA1

    ca05cf6c0eac29a22d1296a15804cec36a908347

  • SHA256

    1f1e1c079253f774dc02a7ff4e103a781573288802ba8c87af6790626fbcfca6

  • SHA512

    cd27c0801d2d33ddb0ce26a769fd51e844f8ac7301079afab3c786822c529cb924b7db7e4a1992af77edf011ad4ffd586191a8754ca3738846605eb67acf3f5c

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ZIRAT BANKA.IFT MESAJI.exe
    "C:\Users\Admin\AppData\Local\Temp\ZIRAT BANKA.IFT MESAJI.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious behavior: EnumeratesProcesses
    PID:3264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads