Analysis

  • max time kernel
    154s
  • max time network
    157s
  • platform
    windows7_x64
  • resource
    win7-20220718-en
  • resource tags

    arch:x64arch:x86image:win7-20220718-enlocale:en-usos:windows7-x64system
  • submitted
    11/08/2022, 14:59

General

  • Target

    ZX1.exe

  • Size

    32KB

  • MD5

    7c9b3362ff75c5e95577a18412c4203b

  • SHA1

    8f0d4d0b50eb359e5c44126fb8abce60d8c44fb3

  • SHA256

    50be00fcfe23b947d1a87ed5f052a64482f2674bb6d4db6ff8ab8791778a84ec

  • SHA512

    38f39fbb7b06828e23d2381c58c83b7804da7033f3b5fe7abfa475c292348dbc7e2c49bd35827c5045fc792811379b41880bbfb628f2411eb4c3ef3880598e43

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 21 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ZX1.exe
    "C:\Users\Admin\AppData\Local\Temp\ZX1.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:308

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/308-54-0x0000000075591000-0x0000000075593000-memory.dmp

          Filesize

          8KB

        • memory/308-55-0x0000000074BB0000-0x000000007515B000-memory.dmp

          Filesize

          5.7MB

        • memory/308-56-0x0000000074BB0000-0x000000007515B000-memory.dmp

          Filesize

          5.7MB