Overview

overview

1

Static

static

96b1c12c35...e6.exe

windows7-x64

1

96b1c12c35...e6.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    45s
  • max time network
    49s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    20-10-2022 23:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    96b1c12c3509d1d81a3e63ed262814c307d432339b4d90c02b52b978e205e7e6.exe

  • Size

    374KB

  • MD5

    443dd3778ff95125c492e69c993db806

  • SHA1

    4fb08da39366c26742bd2565747e1698d07754c3

  • SHA256

    96b1c12c3509d1d81a3e63ed262814c307d432339b4d90c02b52b978e205e7e6

  • SHA512

    ca36a3e818cab56db9d415d9316ea13446d09d377110fab3a9c0dd33212723c866248213790589847aa9ea1575a584d66e8d864c79715549b35ffea43e3d6de1

  • SSDEEP

    6144:Q8eDqtNLHaYmZu65rk+0jsmfpakKSrcn7Xu7WXlOJA4mwQm6/o6v/p0eSKZHtaDb:QjqDLHYKrjsmfpak3rcnTbX0a/pkKZNx

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\96b1c12c3509d1d81a3e63ed262814c307d432339b4d90c02b52b978e205e7e6.exe
    "C:\Users\Admin\AppData\Local\Temp\96b1c12c3509d1d81a3e63ed262814c307d432339b4d90c02b52b978e205e7e6.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1456-54-0x0000000075B51000-0x0000000075B53000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1456-55-0x0000000000400000-0x0000000000465000-memory.dmp

    Filesize

    404KB

    Download