a4fa3779ed4b957048afe408ebc320c18bbb5c5a2d3f4d251af9c7c32c68d7ad | Triage

Analysis

max time kernel
145s
max time network
136s
platform
windows10_x64
resource
win10v20210408
submitted
15-09-2021 06:06

Sharing

Report Analysis Logs

General

Target

javasgs.exe
Size

8.5MB
MD5

14e220c42ba420364db771a141a58553
SHA1

c68af22a9168c66377622b057f950d871d8f04d8
SHA256

a4fa3779ed4b957048afe408ebc320c18bbb5c5a2d3f4d251af9c7c32c68d7ad
SHA512

1a4a0413ecef7e31b516fbe5b61041f8db05482b75d8edcdf7d4b62d7bd2dbd62de9c2953bd13e81b77766d300cc24d850acd4b91609aecb1db2ff2472359bdb

Score

5^/10

Malware Config

Signatures

Suspicious use of NtSetInformationThreadHideFromDebugger 2 IoCs

Processes:

javasgs.exe

pid process

656 javasgs.exe
656 javasgs.exe

C:\Users\Admin\AppData\Local\Temp\javasgs.exe
"C:\Users\Admin\AppData\Local\Temp\javasgs.exe"
1⤵
- Suspicious use of NtSetInformationThreadHideFromDebugger
PID:656

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/656-114-0x0000000000170000-0x0000000000190000-memory.dmp

Filesize
128KB

Download
memory/656-115-0x0000000140000000-0x0000000140CCC000-memory.dmp

Filesize
12.8MB

Download