Overview

overview

10

Static

static

gw3sbbiu.dun.exe

windows7_x64

10

gw3sbbiu.dun.exe

windows10-2004_x64

1

Analysis

  • max time kernel
    151s
  • max time network
    131s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    21-05-2022 12:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    gw3sbbiu.dun.exe

  • Size

    341KB

  • MD5

    5a14ecb86c759a98f4ed84147eef1173

  • SHA1

    17149248793858899a5b177791226d91dd55c0b6

  • SHA256

    d6003d92bb4afadbc8ee04fc35c1e3238c2bbc1ca06fecbb19b8b72c1372cc5a

  • SHA512

    4e5a6c2a3e49229e0f8c0869f1f499e13e47939422e001804c160982e5b0ffcbc968966b88131521dc7c6afffde752472f66cc2cf29ed75228e091169238851b

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 8 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\gw3sbbiu.dun.exe
    "C:\Users\Admin\AppData\Local\Temp\gw3sbbiu.dun.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:4508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4508-130-0x0000000000C20000-0x0000000000C7C000-memory.dmp
    Filesize

    368KB

    Download
  • memory/4508-131-0x0000000005BA0000-0x0000000006144000-memory.dmp
    Filesize

    5.6MB

    Download
  • memory/4508-132-0x0000000005690000-0x0000000005722000-memory.dmp
    Filesize

    584KB

    Download
  • memory/4508-133-0x0000000005810000-0x00000000058AC000-memory.dmp
    Filesize

    624KB

    Download
  • memory/4508-134-0x0000000005B10000-0x0000000005B76000-memory.dmp
    Filesize

    408KB

    Download