Overview

overview

10

Static

static

Order#SQ031776.exe

windows7-x64

1

Order#SQ031776.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    17-09-2022 01:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Order#SQ031776.exe

  • Size

    18KB

  • MD5

    c2a18ada9607e7669fe7406261b83b43

  • SHA1

    496cc34bb91df74c0832a098e1e0148194abc1bc

  • SHA256

    d61a1d0331d101743be750b79e620768b3d6fb3a01a8075806f6f3d063d89eb8

  • SHA512

    a8e1f87e33df47a3721712f2dcfefd55e51fd3379d6484a36910effed0be73610ed724d01a9d49c360c57b9f2d56a07e794b9cbafed03335cc61084473b04c79

  • SSDEEP

    384:+Ypst0Uf+vAo/1b8XCt/z6ejVAFJL5jHaKDj0Ck3jso:1pWBf+vAoNWI/zpcNQC0Ck3F

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Order#SQ031776.exe
    "C:\Users\Admin\AppData\Local\Temp\Order#SQ031776.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1764

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1764-54-0x0000000000B30000-0x0000000000B38000-memory.dmp

    Filesize

    32KB

    Download