Overview

overview

10

Static

static

hesaphareketi-01.exe

windows7-x64

1

hesaphareketi-01.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    151s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    17-10-2022 06:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    hesaphareketi-01.exe

  • Size

    21KB

  • MD5

    5cb067a6198acceabf2b866d832451ca

  • SHA1

    a3cd2c82a3d0cd4e4c69f7541c49795c36376c4f

  • SHA256

    72f830e51eb1757b6f3a32a3d97e6e74975cbb87d0b719a8a985e3949a6e645b

  • SHA512

    98d5bb09ec4d46dc27d92d1cce06e1c8bb91341324d513212632eb19b5508cd17243196e31f62adebd89162eb7c2befb571dab9edb3b7d381c7f2ab613baa7e8

  • SSDEEP

    384:ZX30HvRyAi34bh2NWWF0J8HTQS0qPnW900eAaX6SV0xYWZjANN2xeuP:B3rAO4bUNWWF0J8HTQS0qPnW900eAaX+

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\hesaphareketi-01.exe
    "C:\Users\Admin\AppData\Local\Temp\hesaphareketi-01.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/768-54-0x0000000001230000-0x000000000123C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/768-55-0x0000000076871000-0x0000000076873000-memory.dmp

    Filesize

    8KB

    Download