Overview

overview

10

Static

static

Company profile.exe

windows7_x64

10

Company profile.exe

windows10-2004_x64

1

Analysis

  • max time kernel
    150s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    21-05-2022 18:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Company profile.exe

  • Size

    716KB

  • MD5

    16f704634dd7855cf929214dfaeaa9e8

  • SHA1

    e7af55b75a431c30265b7a63162611c44cfef296

  • SHA256

    e4e29eef439bf36287f9dc660155697cc2d227fbccd34d95a8b59c5451ba5287

  • SHA512

    8472440832759e87529151606aecc9cf4696f51c32cf4b9d6b338283bc6c937b0755dd945faa73baf36df1786030042a97883178f0d50db1fa57d160b12761a9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 8 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Company profile.exe
    "C:\Users\Admin\AppData\Local\Temp\Company profile.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2256-130-0x0000000000D20000-0x0000000000DDA000-memory.dmp

    Filesize

    744KB

    Download

  • memory/2256-131-0x0000000005E00000-0x00000000063A4000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/2256-132-0x0000000005790000-0x0000000005822000-memory.dmp

    Filesize

    584KB

    Download

  • memory/2256-133-0x0000000005780000-0x000000000578A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2256-134-0x0000000005B40000-0x0000000005BDC000-memory.dmp

    Filesize

    624KB

    Download

  • memory/2256-135-0x0000000005CE0000-0x0000000005D46000-memory.dmp

    Filesize

    408KB

    Download