Resubmissions
01-12-2021 22:56
211201-2ws33abgf4 101-12-2021 22:55
211201-2v518sgfdl 101-12-2021 22:53
211201-2t11wsbge6 101-12-2021 22:51
211201-2s416agfcm 101-12-2021 22:27
211201-2c978sbfb5 101-12-2021 22:27
211201-2c4qfsbfb2 101-12-2021 22:23
211201-2at38sbeh3 430-11-2021 22:48
211130-2q8xbsghbq 130-11-2021 22:46
211130-2p6qkscah5 130-11-2021 22:41
211130-2l6amscag6 1Analysis
-
max time kernel
151s -
max time network
138s -
platform
windows10_x64 -
resource
win10-en-20211014 -
submitted
01-12-2021 22:27
Static task
static1
Behavioral task
behavioral1
Sample
Cuberates@TaskILL.bin.exe
Resource
win7-en-20211104
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
Cuberates@TaskILL.bin.exe
Resource
win10-en-20211014
windows10_x64
0 signatures
0 seconds
General
-
Target
Cuberates@TaskILL.bin.exe
-
Size
31KB
-
MD5
c261c6e3332d0d515c910bbf3b93aab3
-
SHA1
ff730b6b2726240df4b2f0db96c424c464c65c17
-
SHA256
4663715548c70eec7e9cbf272171493d47a75d2652e38cca870412ea9e749fe9
-
SHA512
a93bd7b1d809493917e0999d4030cb53ab7789c65f6b87e1bbac27bd8b3ad2aeb92dec0a69369c04541f5572a78f04d8dfba900624cf5bd82d7558f24d0a8e26
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
Processes:
Cuberates@TaskILL.bin.exepid process 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe 2692 Cuberates@TaskILL.bin.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
Cuberates@TaskILL.bin.exedescription pid process Token: SeDebugPrivilege 2692 Cuberates@TaskILL.bin.exe