Analysis

  • max time kernel
    129s
  • max time network
    44s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    07-07-2020 17:04

General

  • Target

    nggVa.exe

  • Size

    20KB

  • MD5

    667b2a9ff17bb2184e3788a91aac944e

  • SHA1

    9389d20935ae2b5eae73ad08d57940476a24588a

  • SHA256

    cb17f05722fdf539b6675a082e193e5e29957c41dfd8bf114895c8278389162d

  • SHA512

    2dee1fa34bc7e098260586715dda97a7c38acac9c084145940a234c205da3a386686d2517ea32beaabf331afd1b4ba6fa611ff8cb1b45fe1cd34f59f5f082494

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\nggVa.exe
    "C:\Users\Admin\AppData\Local\Temp\nggVa.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1616

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads