Overview

overview

1

Static

static

7d47bdf805...23.exe

windows7-x64

1

7d47bdf805...23.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    152s
  • max time network
    169s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/10/2022, 16:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7d47bdf80553078a8ef8b4840670f1630dbbc64373bac1b2b07b80555b794523.exe

  • Size

    160KB

  • MD5

    060aab6e038447853f97cc09fda0283a

  • SHA1

    5085c75d4504b9af1d9a01d2b761b814be1ed1bd

  • SHA256

    7d47bdf80553078a8ef8b4840670f1630dbbc64373bac1b2b07b80555b794523

  • SHA512

    e70c8bb105b8b4f7ddf379687cd4284e15866265eb1f6fa85b08a4af69ef050731d42f0bc418246ce24cf904bb6357fd327093b31bc46ac22c13b3c3e3cfc8a7

  • SSDEEP

    3072:Aox46Vdp9V4LZZAyARl0DJyIu4liPc96uOOvYip6f:Aom6vpr4LZZlA70G4cG6uJv1p0

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7d47bdf80553078a8ef8b4840670f1630dbbc64373bac1b2b07b80555b794523.exe
    "C:\Users\Admin\AppData\Local\Temp\7d47bdf80553078a8ef8b4840670f1630dbbc64373bac1b2b07b80555b794523.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1108-132-0x0000000001000000-0x0000000001028000-memory.dmp

    Filesize

    160KB

    Download

  • memory/1108-133-0x0000000001000000-0x0000000001028000-memory.dmp

    Filesize

    160KB

    Download

  • memory/1108-134-0x0000000001000000-0x0000000001028000-memory.dmp

    Filesize

    160KB

    Download