Overview

overview

1

Static

static

600c2273e6...f7.exe

windows7-x64

1

600c2273e6...f7.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    68s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/12/2022, 21:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    600c2273e6d51566b479a3202bf1e71cfbb2dbb1ed2cd7da895b644884320cf7.exe

  • Size

    1.9MB

  • MD5

    9ff5307aed8dd2f345ee357ca6ed3ae6

  • SHA1

    2858f4246aa55813befb324addab179a5cffa37c

  • SHA256

    600c2273e6d51566b479a3202bf1e71cfbb2dbb1ed2cd7da895b644884320cf7

  • SHA512

    6f4e0028d4ebbfceeffe18708d1052431343c3994d67df8ed13d8fdddabf266daed668a3279e227b647e47db45dd3d3eaeaddbbc331eb658fd42e6b311eefd24

  • SSDEEP

    24576:LitV0IsFKeqdqZ8vg9LUYsXrOcR1EroWyHnnu6uU+uVi0tjQF+iGAMAmYyV/0BhX:LitV1YKeqBXxE2V+GtywtsEaA2QeCeeW

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\600c2273e6d51566b479a3202bf1e71cfbb2dbb1ed2cd7da895b644884320cf7.exe
    "C:\Users\Admin\AppData\Local\Temp\600c2273e6d51566b479a3202bf1e71cfbb2dbb1ed2cd7da895b644884320cf7.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1484

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads