f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82

Analysis

max time kernel
149s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
21-11-2022 17:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Size

151KB
MD5

062dd343a6176ef4f87ec15b490effe0
SHA1

73440eee3b18192596b399f4928c52c5d82fe9a2
SHA256

f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82
SHA512

1790032924bf0aec56e470a0497ac98136e634b2271129d709d784241c769b294260a807ada042e2a7b197a369c16a5b4660dc43a08c529748143a15356a6482
SSDEEP

3072:Xdv73pgGPZb1CxAvOWPfuYitZburAbYJVww+dnYH7k:X3LRb1CxAv9fif+X+n

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 64 IoCs

description	pid	Process
Token: SeDebugPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: SeIncBasePriorityPrivilege	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
Token: 33	3364	f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe

C:\Users\Admin\AppData\Local\Temp\f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe
"C:\Users\Admin\AppData\Local\Temp\f5234b074d6ed8b7c9c1ac968cf35cab3ab9af5e10fa0443c6377af899076c82.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:3364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3364-132-0x0000000000200000-0x000000000022C000-memory.dmp

Filesize
176KB

Download
memory/3364-133-0x00007FFAA2E00000-0x00007FFAA38C1000-memory.dmp

Filesize
10.8MB

Download
memory/3364-134-0x00007FFAA2E00000-0x00007FFAA38C1000-memory.dmp

Filesize
10.8MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads