Overview

overview

10

Static

static

ﱞﱞﱞï...ﱞﱞ

windows10_x64

10

ﱞﱞﱞï...ฺฺ

windows10_x64

10

ﱞﱞﱞï...ﱞﱞ

windows10_x64

10

ﱞﱞﱞï...ﱞﱞ

windows10_x64

10

ﱞﱞﱞï...ﱞﱞ

windows7_x64

1

Resubmissions

21-04-2021 18:06

210421-67ta5keqaa 10

21-04-2021 18:02

210421-f5gwj58ryj 10

Analysis

  • max time kernel
    1579s
  • max time network
    1582s
  • platform
    windows7_x64
  • resource
    win7v20210410
  • submitted
    21-04-2021 18:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dashdV.exe

  • Size

    17.1MB

  • MD5

    765f570a565d578f2ace3ccb41cef038

  • SHA1

    89b44e3aa8f3c93f80ae29f7a36a9486b080229d

  • SHA256

    0d7c515d3483b45d5725717070e8497435c39b3450af59194b2a32a33c2867e8

  • SHA512

    941862a1d09e70725f9826b05dc8a8c7442add91229f39ac7ea9d4e6b8d0f751d749ac6b6ac2202290122945e14bab06516680a7007598af7cca62ac1b465898

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dashdV.exe
    "C:\Users\Admin\AppData\Local\Temp\dashdV.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2004-59-0x00000000000C0000-0x00000000000C1000-memory.dmp
    Filesize

    4KB

    Download
  • memory/2004-61-0x0000000000610000-0x0000000000611000-memory.dmp
    Filesize

    4KB

    Download
  • memory/2004-62-0x0000000000615000-0x0000000000626000-memory.dmp
    Filesize

    68KB

    Download