Overview

overview

1

Static

static

9867cb9265...ca.exe

windows7-x64

1

9867cb9265...ca.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    40s
  • max time network
    29s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    05/12/2022, 11:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9867cb9265dd1917ecb277e0f0bec742c94f7f7e0b67dc6a98dc8576a5003bca.exe

  • Size

    93KB

  • MD5

    e321086846ead3a7553e1216c663e301

  • SHA1

    46956ae717eb953e464ba7e719024ff4455dd499

  • SHA256

    9867cb9265dd1917ecb277e0f0bec742c94f7f7e0b67dc6a98dc8576a5003bca

  • SHA512

    ca19fec11c77ecbea1416627df066fb8997a7cac2cc4cb49af19c7cea59aa06e53cf959d2b05517f536fcaa8d2b952c074e0fb1dbb14216a6e17eab0f337b4b5

  • SSDEEP

    1536:Ud39HI6+6i+95EI999/lHbCjSTVywXktWnU6dCQlw5NAnsDyB3JyJJTdb0SJEviq:Ud39Hl+6i+95EI999/l7CjSTVygktWn2

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9867cb9265dd1917ecb277e0f0bec742c94f7f7e0b67dc6a98dc8576a5003bca.exe
    "C:\Users\Admin\AppData\Local\Temp\9867cb9265dd1917ecb277e0f0bec742c94f7f7e0b67dc6a98dc8576a5003bca.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/972-54-0x00000000753D1000-0x00000000753D3000-memory.dmp

    Filesize

    8KB

    Download

  • memory/972-55-0x00000000009A0000-0x00000000009BB000-memory.dmp

    Filesize

    108KB

    Download