Overview

overview

1

Static

static

59cf57db3c...5b.exe

windows7-x64

1

59cf57db3c...5b.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    05/10/2022, 17:59

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    59cf57db3c1bb5c0fe042470f35ae398a0bad752c400eb7f8468a39e9625e85b.exe

  • Size

    30KB

  • MD5

    69b40bdecc6f1a2305e5c9d4879aed94

  • SHA1

    a3df0247c26bc384f90c6be26ec25787ba0ad87c

  • SHA256

    59cf57db3c1bb5c0fe042470f35ae398a0bad752c400eb7f8468a39e9625e85b

  • SHA512

    718d652881be0183e1a67f964a8563a22c116d5f576dc3f7ddaeefc903349e34a731f96780cfa9814f21b5d932031029d02dac1c61c48fce382b52affe99bbe2

  • SSDEEP

    768:zEk/cCSt8Q1KbF4W6tbdsA+wb2Xo2N+jZOz+eLf:pUCYW6tbdsA+02XT4tOz/j

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\59cf57db3c1bb5c0fe042470f35ae398a0bad752c400eb7f8468a39e9625e85b.exe
    "C:\Users\Admin\AppData\Local\Temp\59cf57db3c1bb5c0fe042470f35ae398a0bad752c400eb7f8468a39e9625e85b.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1764

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1764-54-0x0000000000DB0000-0x0000000000DBC000-memory.dmp

          Filesize

          48KB

          Download

        • memory/1764-55-0x0000000075BA1000-0x0000000075BA3000-memory.dmp

          Filesize

          8KB

          Download