Overview

overview

6

Static

static

bb96e6debc...90.exe

windows7-x64

1

bb96e6debc...90.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    102s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    30/10/2022, 12:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bb96e6debccb533f2db1ba5d2e67d9b23d80d223f9c0f917f6ee7f46a3816590.exe

  • Size

    792KB

  • MD5

    92e0f24fd723f5999b46d382012c62c0

  • SHA1

    b60d68c15dbcf498f04aef52fb962c596ee3b62c

  • SHA256

    bb96e6debccb533f2db1ba5d2e67d9b23d80d223f9c0f917f6ee7f46a3816590

  • SHA512

    d4e0156c2163fbd6e2b7abedd07736ce144ab33edfaff28ca52f5c5e20414e20f9f043bb649af1a8568a32ca162d72fc49b9c234dd872493484f86196f765e6c

  • SSDEEP

    12288:GDgw67ZgIymzG+++XJhF6+wgb6aoZcUzXyPakeHie2dS97wKvu:QX6fy+ZhF6+wgb6BZdXyykZe289Ek

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 13 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bb96e6debccb533f2db1ba5d2e67d9b23d80d223f9c0f917f6ee7f46a3816590.exe
    "C:\Users\Admin\AppData\Local\Temp\bb96e6debccb533f2db1ba5d2e67d9b23d80d223f9c0f917f6ee7f46a3816590.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/948-54-0x0000000074AB1000-0x0000000074AB3000-memory.dmp

    Filesize

    8KB

    Download

  • memory/948-55-0x0000000073E20000-0x00000000743CB000-memory.dmp

    Filesize

    5.7MB

    Download

  • memory/948-56-0x0000000000706000-0x0000000000717000-memory.dmp

    Filesize

    68KB

    Download

  • memory/948-57-0x0000000073E20000-0x00000000743CB000-memory.dmp

    Filesize

    5.7MB

    Download