Overview

overview

1

Static

static

a2a0ce67c2...in.exe

windows7-x64

1

a2a0ce67c2...in.exe

windows10-2004-x64

1

Resubmissions

02/12/2022, 14:11

221202-rhnlbaed77 1

20/10/2022, 20:03

221020-ysnsdscean 1

Analysis

  • max time kernel
    413s
  • max time network
    417s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    02/12/2022, 14:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2a0ce67c239385c1ec1d5d29ff91a7daf91cf2b4368dc91d84dbb598becdc5d.bin.exe

  • Size

    203KB

  • MD5

    d5ee933f4eb7e3226b454dd2efcf2609

  • SHA1

    8644fdc023ed3b37f121600f45a187b89dcc67b8

  • SHA256

    a2a0ce67c239385c1ec1d5d29ff91a7daf91cf2b4368dc91d84dbb598becdc5d

  • SHA512

    7e483cc88d703fe9ccec78feaa1c47bc98688d1917045847d709040eadffdb038aafe98624e8b71280a44b6792c2efce28893d3478cd80d7b676df9a9225e0c3

  • SSDEEP

    6144:zXtu8+/0JWzIblasnMZZ/fuoFIRVlw5M6Z7PWW:z9u8+/0JWz/sU/f2xw5M2J

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a2a0ce67c239385c1ec1d5d29ff91a7daf91cf2b4368dc91d84dbb598becdc5d.bin.exe
    "C:\Users\Admin\AppData\Local\Temp\a2a0ce67c239385c1ec1d5d29ff91a7daf91cf2b4368dc91d84dbb598becdc5d.bin.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1304-54-0x00000000762E1000-0x00000000762E3000-memory.dmp

    Filesize

    8KB

    Download