Overview

overview

1

Static

static

WPS Office.exe

windows7_x64

1

WPS Office.exe

windows10_x64

1

Analysis

  • max time kernel
    313s
  • max time network
    383s
  • platform
    windows10_x64
  • resource
    win10v20210408
  • submitted
    22-07-2021 01:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WPS Office.exe

  • Size

    6.7MB

  • MD5

    751c29dd6236f59e6c5ef5c9e8fcf400

  • SHA1

    b47b97aba773d7d386b458e5491054d546a025f2

  • SHA256

    447efeea50e94d4a553ebde53f55b312cabe43f9a2733a08e61a58cd1d8b5706

  • SHA512

    56d8c8f19041a05afe5bd717d0f9886975ef7fa4c8dff3b2ac7a5f8bb8aa041b1205e3cf1898ebef4128414757d1acbf27c8d3ba8aa9e297b6772e2109a2a47e

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\WPS Office.exe
    "C:\Users\Admin\AppData\Local\Temp\WPS Office.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads