Overview

overview

10

Static

static

Order_02257PDF.exe

windows7_x64

10

Order_02257PDF.exe

windows10_x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows10_x64
  • resource
    win10
  • submitted
    13-07-2020 11:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Order_02257PDF.exe

  • Size

    735KB

  • MD5

    caf43e6088bea3ee2a92e7b4061663dc

  • SHA1

    f61ae2e44f2735ffb26ddf639cb62a2670fd27bd

  • SHA256

    c28900c5d2b84c527a1d1ca867faac1fa8ac195d6a1df64b1f5e2607db77b774

  • SHA512

    78feef15b8ca5640fc0e57706e3637fd2af87d8da5013ea84cf114ca76f61b9017a23573439a0f086d9a242bcefb6408b8b26de57a3caf6cc3e0815a14195de6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Order_02257PDF.exe
    "C:\Users\Admin\AppData\Local\Temp\Order_02257PDF.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads