85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f

Analysis

max time kernel
93s
max time network
97s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
14/03/2023, 14:33

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

plutonium.exe
Size

4.6MB
MD5

72cb7c6d98e9e47274733825c9176679
SHA1

8681469349254c5203a7f9a189833d22a14f5cd9
SHA256

85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f
SHA512

d18d306ca9a311df1a96244ecc67a3e61ffc8b9b465a1301263e11d500cc2f38847e922c57d4a3321196d6ceb32310113d7d790b4dfb2c05c3ff1e2af26dc708
SSDEEP

98304:zUaMwIBAoUcmmxVA5/xDnLx0yu+5TeRXExXYAx:Ia+AobhATd0yH0RXUo2

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2012	plutonium.exe

C:\Users\Admin\AppData\Local\Temp\plutonium.exe
"C:\Users\Admin\AppData\Local\Temp\plutonium.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
61KB

MD5
e71c8443ae0bc2e282c73faead0a6dd3

SHA1
0c110c1b01e68edfacaeae64781a37b1995fa94b

SHA256
95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

SHA512
b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar3C8C.tmp

Filesize
161KB

MD5
be2bec6e8c5653136d3e72fe53c98aa3

SHA1
a8182d6db17c14671c3d5766c72e58d87c0810de

SHA256
1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

SHA512
0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

Download Submit
memory/2012-70-0x000000001B170000-0x000000001B178000-memory.dmp

Filesize
32KB

Download
memory/2012-72-0x000000001B1A0000-0x000000001B1AA000-memory.dmp

Filesize
40KB

Download
memory/2012-58-0x0000000000C80000-0x0000000000C9A000-memory.dmp

Filesize
104KB

Download
memory/2012-59-0x0000000000EB0000-0x0000000000EBA000-memory.dmp

Filesize
40KB

Download
memory/2012-60-0x0000000000EC0000-0x0000000000ECA000-memory.dmp

Filesize
40KB

Download
memory/2012-61-0x000000001BEA0000-0x000000001C20C000-memory.dmp

Filesize
3.4MB

Download
memory/2012-62-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-63-0x000000001ABB0000-0x000000001ABF2000-memory.dmp

Filesize
264KB

Download
memory/2012-64-0x000000001C210000-0x000000001CA76000-memory.dmp

Filesize
8.4MB

Download
memory/2012-66-0x0000000000ED0000-0x0000000000EF2000-memory.dmp

Filesize
136KB

Download
memory/2012-65-0x000000001ABF0000-0x000000001AC40000-memory.dmp

Filesize
320KB

Download
memory/2012-67-0x000000001B6F0000-0x000000001B772000-memory.dmp

Filesize
520KB

Download
memory/2012-68-0x000000001B140000-0x000000001B166000-memory.dmp

Filesize
152KB

Download
memory/2012-69-0x000000001AC40000-0x000000001AC48000-memory.dmp

Filesize
32KB

Download
memory/2012-57-0x0000000000C70000-0x0000000000C7C000-memory.dmp

Filesize
48KB

Download
memory/2012-54-0x0000000000F80000-0x0000000001428000-memory.dmp

Filesize
4.7MB

Download
memory/2012-74-0x000000001B5B0000-0x000000001B5D8000-memory.dmp

Filesize
160KB

Download
memory/2012-73-0x000000001B230000-0x000000001B24E000-memory.dmp

Filesize
120KB

Download
memory/2012-71-0x000000001B180000-0x000000001B196000-memory.dmp

Filesize
88KB

Download
memory/2012-75-0x000000001B5E0000-0x000000001B5EA000-memory.dmp

Filesize
40KB

Download
memory/2012-76-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-77-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-78-0x000000001B970000-0x000000001B971000-memory.dmp

Filesize
4KB

Download
memory/2012-86-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-151-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-152-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-154-0x000000001B1B0000-0x000000001B230000-memory.dmp

Filesize
512KB

Download
memory/2012-56-0x0000000000EA0000-0x0000000000EA8000-memory.dmp

Filesize
32KB

Download
memory/2012-55-0x0000000000BE0000-0x0000000000C60000-memory.dmp

Filesize
512KB

Download
memory/2012-370-0x000000001CD60000-0x000000001CDD6000-memory.dmp

Filesize
472KB

Download
memory/2012-371-0x000000001A8B0000-0x000000001A8E2000-memory.dmp

Filesize
200KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads