Overview

overview

1

Static

static

WinRAR-ZIP...u).zip

windows10-1703-x64

1

Lovoo.exe

windows10-1703-x64

1

Neues Text...2).txt

windows10-1703-x64

1

c.txt

windows10-1703-x64

1

Analysis

  • max time kernel
    52s
  • max time network
    178s
  • platform
    windows10-1703_x64
  • resource
    win10-20220812-en
  • resource tags

    arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
  • submitted
    10/09/2022, 14:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Lovoo.exe

  • Size

    2.4MB

  • MD5

    e9183107f2c342e1f41349c99f598d94

  • SHA1

    690b5cd64fc6deffa1921ca4db162d386cc88ecd

  • SHA256

    ff7556835cced47dcdb82c5f48d87b50818aca36058108434e7a28a505e9437a

  • SHA512

    d2c41ae310fcd758bb00123ac7c96375eb919f0de035b603bbd390ccbeba56c5538d80030a610cb4165133ef522f491d9219105805b0ad8a61516048214cbfea

  • SSDEEP

    24576:0LNv/VBztIwHebk08m657w6ZBLmkitKqBCjC0PDgM5AG+VQ2VUNSHkEEar3qcXUk:0LNv/V5tIhTVV1BCjBEQAZ1Eoqv

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Lovoo.exe
    "C:\Users\Admin\AppData\Local\Temp\Lovoo.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3040

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3040-118-0x0000000000400000-0x0000000000434000-memory.dmp

          Filesize

          208KB

          Download

        • memory/3040-119-0x0000000000F60000-0x0000000000F7C000-memory.dmp

          Filesize

          112KB

          Download

        • memory/3040-120-0x0000000000400000-0x00000000004E0000-memory.dmp

          Filesize

          896KB

          Download

        • memory/3040-121-0x00007FFCAC350000-0x00007FFCAC360000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3040-122-0x0000000001ED0000-0x0000000001EF6000-memory.dmp

          Filesize

          152KB

          Download

        • memory/3040-123-0x0000000000400000-0x00000000004E0000-memory.dmp

          Filesize

          896KB

          Download