Overview

overview

10

Static

static

NO120220.exe

windows7-x64

1

NO120220.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    41s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    04-11-2022 02:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NO120220.exe

  • Size

    9KB

  • MD5

    f957c21bba09b850253f5e234eaee672

  • SHA1

    c2d6e245c356291a4a500453555ebf6f8136519b

  • SHA256

    407845005e74c5321a626668d9bfa35f57332328e7e7ac76fd06523d90a4e20d

  • SHA512

    2844c357911bcb0f1cc5d8f9f5bc0243d7d3418dabe43429a2da8b1dc67dbd73bbcb4fc0105127d0fb4a93a2a41fbc917644ff931245cba146f78d3f8d33c5eb

  • SSDEEP

    192:NDWHDqno3KtoLmPbOw9QYYcQdi8stYcFmVc03KY:NDW+noZLmjOwIcKiptYcFmVc03K

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NO120220.exe
    "C:\Users\Admin\AppData\Local\Temp\NO120220.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1884-54-0x0000000000980000-0x0000000000988000-memory.dmp

    Filesize

    32KB

    Download

  • memory/1884-55-0x0000000076171000-0x0000000076173000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1884-56-0x0000000008A20000-0x0000000008C2C000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1884-57-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-58-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-60-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-62-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-64-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-66-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-70-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-68-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-74-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-72-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-78-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-76-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-82-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-80-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-84-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-86-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-88-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-90-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-92-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-96-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-94-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-100-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-102-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-98-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-106-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-108-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-104-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-112-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-110-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-114-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-118-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1884-116-0x0000000008A67000-0x0000000008AA8000-memory.dmp

    Filesize

    260KB

    Download