Overview

overview

10

Static

static

INQUIRY No...df.exe

windows7_x64

10

INQUIRY No...df.exe

windows10_x64

1

Analysis

  • max time kernel
    121s
  • max time network
    117s
  • platform
    windows10_x64
  • resource
    win10
  • submitted
    31-07-2020 12:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    INQUIRY No. 310720205467_pdf.exe

  • Size

    1.2MB

  • MD5

    618c581392b7271abdf40a8b376e8324

  • SHA1

    64540d461fb9bfedeaf9df200c960970bea164fd

  • SHA256

    dccd0903a7912382f20b16beb29d93c14435e41ee655c2e88740879089d56fca

  • SHA512

    4501cc013e50a84968a9bb78ad585a31db8726226656e46bc4310d3843f479fd20531685b691845a170f61324277ce1d50b7b2be8662ace239f63a4f6fcf2311

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\INQUIRY No. 310720205467_pdf.exe
    "C:\Users\Admin\AppData\Local\Temp\INQUIRY No. 310720205467_pdf.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads