Overview

overview

1

Static

static

df335804da...77.exe

windows7-x64

1

df335804da...77.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-09-2022 05:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df335804da6264c535e2504f49d430d3a63c9df01daaaa77b88cf37186bc5477.exe

  • Size

    15KB

  • MD5

    a240b03c1e974b1f72fe08928e9e6b23

  • SHA1

    a434a7c00d529ec94d231dbd2ea4b95ab377cb6a

  • SHA256

    df335804da6264c535e2504f49d430d3a63c9df01daaaa77b88cf37186bc5477

  • SHA512

    1b4a49802d5a168cd67e79a806da073226b23cacbe41ef3b1b7f8c41c22b735818fe2c3ceda97164e7a55d166ba687508198071f20d8eb8ada50fe58e28fe83c

  • SSDEEP

    192:NZ2zGEdYXLEM8qRcGHnt/8w7UNGxB0kw/CWla:NZ2zGZLEmCWnFtO9/CWl

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\df335804da6264c535e2504f49d430d3a63c9df01daaaa77b88cf37186bc5477.exe
    "C:\Users\Admin\AppData\Local\Temp\df335804da6264c535e2504f49d430d3a63c9df01daaaa77b88cf37186bc5477.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1688-132-0x0000000000320000-0x000000000032A000-memory.dmp

    Filesize

    40KB

    Download