Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    299s
  • max time network
    441s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/02/2023, 22:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file.exe

  • Size

    293KB

  • MD5

    ea72926a1922aeb4bcd5814240a35fde

  • SHA1

    3ef5a090e1c5892db774f6e408d99e34c931e761

  • SHA256

    d27b9f84cca5889719018a8cb306c313009c1801076bbd4ff6e5cebb6e2dfb0a

  • SHA512

    862a92571c815e8cc799088fbd2f08b20ac9fecf9e71a6707c516654da15a20768cc8bb508b68c5fdd95613c93181a72db0428417d21558b4b4c969e3792b584

  • SSDEEP

    6144:euG0Rel/2iLPawKjnIlx3O3kwrUcT+Jh9Ju0:euGKS2iW5jq+3kw4cT4h

Score
7/10
discoveryspywarestealer

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\file.exe
    "C:\Users\Admin\AppData\Local\Temp\file.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:5000

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/5000-132-0x0000000000AFD000-0x0000000000B2B000-memory.dmp

    Filesize

    184KB

    Download

  • memory/5000-133-0x0000000000A60000-0x0000000000AC2000-memory.dmp

    Filesize

    392KB

    Download

  • memory/5000-134-0x0000000000AFD000-0x0000000000B2B000-memory.dmp

    Filesize

    184KB

    Download

  • memory/5000-135-0x0000000005010000-0x00000000055B4000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/5000-136-0x0000000000400000-0x00000000007A5000-memory.dmp

    Filesize

    3.6MB

    Download

  • memory/5000-137-0x00000000055C0000-0x0000000005BD8000-memory.dmp

    Filesize

    6.1MB

    Download

  • memory/5000-138-0x0000000004FE0000-0x0000000004FF2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/5000-139-0x0000000005BE0000-0x0000000005CEA000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/5000-140-0x0000000005CF0000-0x0000000005D2C000-memory.dmp

    Filesize

    240KB

    Download

  • memory/5000-141-0x0000000006050000-0x00000000060B6000-memory.dmp

    Filesize

    408KB

    Download

  • memory/5000-142-0x00000000066D0000-0x0000000006762000-memory.dmp

    Filesize

    584KB

    Download

  • memory/5000-143-0x0000000006780000-0x00000000067F6000-memory.dmp

    Filesize

    472KB

    Download

  • memory/5000-144-0x0000000006860000-0x0000000006A22000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/5000-145-0x0000000006A40000-0x0000000006F6C000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/5000-146-0x0000000007080000-0x000000000709E000-memory.dmp

    Filesize

    120KB

    Download