Overview

overview

10

Static

static

10

848389e1fd...22.exe

windows7_x64

1

848389e1fd...22.exe

windows10_x64

1

Analysis

  • max time kernel
    149s
  • max time network
    23s
  • platform
    windows7_x64
  • resource
    win7-en-20210920
  • submitted
    29-09-2021 09:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    848389e1fda64606e31e4306672ff3943e234882ab6619c1e2d478028355ae22.exe

  • Size

    43KB

  • MD5

    3eacbffbfa0f1f8518e8f55cd85c9ca8

  • SHA1

    d60d4171f646a72b0a42b638f9144ded42a2ee4a

  • SHA256

    848389e1fda64606e31e4306672ff3943e234882ab6619c1e2d478028355ae22

  • SHA512

    db6fbd6856ab8a0d0b579d6b93b33a1b389d8757877ac445bb9b0d8ef3ef220f3b419eeb434390384572a29baf45b9d15ce5aac6f5ef5ece297721f2e332d4b5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 35 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\848389e1fda64606e31e4306672ff3943e234882ab6619c1e2d478028355ae22.exe
    "C:\Users\Admin\AppData\Local\Temp\848389e1fda64606e31e4306672ff3943e234882ab6619c1e2d478028355ae22.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    PID:1596

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1596-53-0x0000000000E70000-0x0000000000E71000-memory.dmp
    Filesize

    4KB

    Download
  • memory/1596-55-0x0000000004CD0000-0x0000000004CD1000-memory.dmp
    Filesize

    4KB

    Download