Overview

overview

10

Static

static

10

469991eb95...52.exe

windows7_x64

1

469991eb95...52.exe

windows10-2004_x64

3

Analysis

  • max time kernel
    150s
  • max time network
    113s
  • platform
    windows7_x64
  • resource
    win7-20220414-en
  • submitted
    07-07-2022 08:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    469991eb95c8b527fc7090d2d63de0c36a91adea2078c89cfc8f8621456f3952.exe

  • Size

    1.4MB

  • MD5

    afbb8bad438808a425e50e01801a9166

  • SHA1

    7d67f133a3a4a1ae04117176adbd7cb3e762b924

  • SHA256

    469991eb95c8b527fc7090d2d63de0c36a91adea2078c89cfc8f8621456f3952

  • SHA512

    47092afaa37e8e10767e9e9995fa2bd14cc2d4b379ab7cdf5690e80ae3901b000bbe10dc916018f2cc8a220dcdf38e99e2a565bcdc682689d66d22d16fa77699

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\469991eb95c8b527fc7090d2d63de0c36a91adea2078c89cfc8f8621456f3952.exe
    "C:\Users\Admin\AppData\Local\Temp\469991eb95c8b527fc7090d2d63de0c36a91adea2078c89cfc8f8621456f3952.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:1684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1684-54-0x0000000000470000-0x00000000004AE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1684-55-0x000000001AC7C000-0x000000001AC9B000-memory.dmp

    Filesize

    124KB

    Download

  • memory/1684-56-0x000000001AC7C000-0x000000001AC9B000-memory.dmp

    Filesize

    124KB

    Download