Analysis
-
max time kernel
307s -
max time network
376s -
platform
windows10_x64 -
resource
win10v20210408 -
submitted
06-08-2021 11:49
General
-
Target
Raccine/RaccineRulesSync.exe
-
Size
12KB
-
MD5
238ed776c03ddd1feb1e3b3a024e5f33
-
SHA1
f5d2cb5906f72d8692a5555c9bba887354613bca
-
SHA256
d767c82d9ad39a5afddf35df4032afd518b44804a492f9b49ba1e4a7535e87a7
-
SHA512
9dfa263b6768c132730a993316b1d460cad51c3b00c912dcb6bd9804d8cba9a14d8eaae8806518ee9c2056afd6c497dfbd6b23eab50fe7694c805598ae6b7076
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\Raccine\RaccineRulesSync.exe"C:\Users\Admin\AppData\Local\Temp\Raccine\RaccineRulesSync.exe"1⤵
- Suspicious use of AdjustPrivilegeToken
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/992-114-0x0000024B47DF0000-0x0000024B47DF1000-memory.dmpFilesize
4KB
-
memory/992-116-0x0000024B624A0000-0x0000024B624A1000-memory.dmpFilesize
4KB
-
memory/992-117-0x0000024B62480000-0x0000024B62482000-memory.dmpFilesize
8KB