Overview

overview

10

Static

static

PROGRESS P...TD.exe

windows7_x64

10

PROGRESS P...TD.exe

windows10-2004_x64

1

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    21-05-2022 01:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PROGRESS PROFILES LTD.exe

  • Size

    702KB

  • MD5

    9d99b23ac43ba51b3cd529be8828f787

  • SHA1

    fdd15b5dbafa70cfbfaa1078367c1e336a269973

  • SHA256

    9e487010dbfb20a4c2860c7d20b73a5f596fbd83fa6517a4f86772ba661559c9

  • SHA512

    60dfb83f2d4f258a3e5bcc6172138bd055da14f5ab54000a5c956618b132cb72d4662506d33671017d44136fd67607626711646bfc302e45733112590152f1aa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 8 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\PROGRESS PROFILES LTD.exe
    "C:\Users\Admin\AppData\Local\Temp\PROGRESS PROFILES LTD.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:5104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/5104-130-0x0000000000140000-0x00000000001F6000-memory.dmp
    Filesize

    728KB

    Download
  • memory/5104-131-0x0000000005170000-0x0000000005714000-memory.dmp
    Filesize

    5.6MB

    Download
  • memory/5104-132-0x0000000004C60000-0x0000000004CF2000-memory.dmp
    Filesize

    584KB

    Download
  • memory/5104-133-0x0000000004E40000-0x0000000004EDC000-memory.dmp
    Filesize

    624KB

    Download
  • memory/5104-134-0x0000000004FE0000-0x0000000005046000-memory.dmp
    Filesize

    408KB

    Download