Overview

overview

10

Static

static

2625381f7c...e1.exe

windows7-x64

1

2625381f7c...e1.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    8s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    22-10-2022 09:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2625381f7c386a2ca581b1b249bb922bc8aeca37a5d3f8a37b771741ef8fc8e1.exe

  • Size

    424KB

  • MD5

    74d5c545888561be891363d16ceae294

  • SHA1

    127f4c1da282b56c1d5e3f05944315147f024992

  • SHA256

    2625381f7c386a2ca581b1b249bb922bc8aeca37a5d3f8a37b771741ef8fc8e1

  • SHA512

    2faa671ca7e9e6f458772761146020f834c8dc42af4a30e12fd71cf2106ea23811fa10213d2416a7eb3830db9f85158d12475e5bfc3a7ff278dea8e04cf5d308

  • SSDEEP

    6144:C2QDnUrp63iAY4zSDQzxIvT2ok+IQGH02JCIoXbftChXW3AxfulDGgB:CdDUrp61uW0TlLIQGUbNblCJxfS6

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2625381f7c386a2ca581b1b249bb922bc8aeca37a5d3f8a37b771741ef8fc8e1.exe
    "C:\Users\Admin\AppData\Local\Temp\2625381f7c386a2ca581b1b249bb922bc8aeca37a5d3f8a37b771741ef8fc8e1.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/536-54-0x0000000075B11000-0x0000000075B13000-memory.dmp

    Filesize

    8KB

    Download

  • memory/536-55-0x0000000000400000-0x00000000004AD000-memory.dmp

    Filesize

    692KB

    Download

  • memory/536-59-0x0000000000370000-0x00000000003F5000-memory.dmp

    Filesize

    532KB

    Download