Overview

overview

10

Static

static

ACCT INFO ...DE.exe

windows7_x64

10

ACCT INFO ...DE.exe

windows10-2004_x64

1

Analysis

  • max time kernel
    154s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    21-05-2022 01:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ACCT INFO AND SWIFT CODE.exe

  • Size

    377KB

  • MD5

    7db1869c1d916bf6db69d96d684aa5cb

  • SHA1

    1a5a02b1c30cc12d6cae14fffda23d64325e3ade

  • SHA256

    fc794224efa6d0286c557a7edebd44483750a2004f40725a4a436f1238698130

  • SHA512

    603dbc4b9bb2ffb19e00004e98772122d7b060beafcfa3d54e6a0f8d121eb086675563d847cfc3a42f93012e3421b16921036c23b8cd9a3395f66959d8f64f43

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 19 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ACCT INFO AND SWIFT CODE.exe
    "C:\Users\Admin\AppData\Local\Temp\ACCT INFO AND SWIFT CODE.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3112

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3112-130-0x00000000006E0000-0x0000000000744000-memory.dmp
    Filesize

    400KB

    Download
  • memory/3112-131-0x00000000055D0000-0x0000000005B74000-memory.dmp
    Filesize

    5.6MB

    Download
  • memory/3112-132-0x0000000005110000-0x00000000051A2000-memory.dmp
    Filesize

    584KB

    Download
  • memory/3112-133-0x00000000051B0000-0x00000000051BA000-memory.dmp
    Filesize

    40KB

    Download
  • memory/3112-134-0x0000000005480000-0x000000000551C000-memory.dmp
    Filesize

    624KB

    Download
  • memory/3112-135-0x0000000005560000-0x00000000055C6000-memory.dmp
    Filesize

    408KB

    Download