85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f

Analysis

max time kernel
81s
max time network
121s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
18-03-2023 14:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

plutonium.exe
Size

4.6MB
MD5

72cb7c6d98e9e47274733825c9176679
SHA1

8681469349254c5203a7f9a189833d22a14f5cd9
SHA256

85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f
SHA512

d18d306ca9a311df1a96244ecc67a3e61ffc8b9b465a1301263e11d500cc2f38847e922c57d4a3321196d6ceb32310113d7d790b4dfb2c05c3ff1e2af26dc708
SSDEEP

98304:zUaMwIBAoUcmmxVA5/xDnLx0yu+5TeRXExXYAx:Ia+AobhATd0yH0RXUo2

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	928	plutonium.exe

C:\Users\Admin\AppData\Local\Temp\plutonium.exe
"C:\Users\Admin\AppData\Local\Temp\plutonium.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
61KB

MD5
e71c8443ae0bc2e282c73faead0a6dd3

SHA1
0c110c1b01e68edfacaeae64781a37b1995fa94b

SHA256
95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

SHA512
b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4793.tmp

Filesize
161KB

MD5
be2bec6e8c5653136d3e72fe53c98aa3

SHA1
a8182d6db17c14671c3d5766c72e58d87c0810de

SHA256
1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

SHA512
0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

Download Submit
memory/928-70-0x000000001AB80000-0x000000001AB88000-memory.dmp

Filesize
32KB

Download
memory/928-55-0x00000000022C0000-0x0000000002340000-memory.dmp

Filesize
512KB

Download
memory/928-58-0x0000000000580000-0x000000000059A000-memory.dmp

Filesize
104KB

Download
memory/928-59-0x00000000005B0000-0x00000000005BA000-memory.dmp

Filesize
40KB

Download
memory/928-60-0x0000000000840000-0x000000000084A000-memory.dmp

Filesize
40KB

Download
memory/928-61-0x000000001BF10000-0x000000001C27C000-memory.dmp

Filesize
3.4MB

Download
memory/928-72-0x000000001AB90000-0x000000001AB9A000-memory.dmp

Filesize
40KB

Download
memory/928-63-0x000000001B0E0000-0x000000001B122000-memory.dmp

Filesize
264KB

Download
memory/928-64-0x000000001C280000-0x000000001CAE6000-memory.dmp

Filesize
8.4MB

Download
memory/928-65-0x000000001B1D0000-0x000000001B220000-memory.dmp

Filesize
320KB

Download
memory/928-66-0x0000000000850000-0x0000000000872000-memory.dmp

Filesize
136KB

Download
memory/928-67-0x000000001B6D0000-0x000000001B752000-memory.dmp

Filesize
520KB

Download
memory/928-68-0x000000001B120000-0x000000001B146000-memory.dmp

Filesize
152KB

Download
memory/928-69-0x000000001AA70000-0x000000001AA78000-memory.dmp

Filesize
32KB

Download
memory/928-372-0x000000001A590000-0x000000001A5C2000-memory.dmp

Filesize
200KB

Download
memory/928-57-0x00000000004F0000-0x00000000004FC000-memory.dmp

Filesize
48KB

Download
memory/928-62-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-73-0x000000001B340000-0x000000001B35E000-memory.dmp

Filesize
120KB

Download
memory/928-74-0x000000001B750000-0x000000001B778000-memory.dmp

Filesize
160KB

Download
memory/928-75-0x000000001AC20000-0x000000001AC2A000-memory.dmp

Filesize
40KB

Download
memory/928-79-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-80-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-81-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-82-0x000000001BDA0000-0x000000001BDA1000-memory.dmp

Filesize
4KB

Download
memory/928-88-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-157-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-158-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-159-0x000000001B370000-0x000000001B3F0000-memory.dmp

Filesize
512KB

Download
memory/928-56-0x00000000005A0000-0x00000000005A8000-memory.dmp

Filesize
32KB

Download
memory/928-71-0x000000001B220000-0x000000001B236000-memory.dmp

Filesize
88KB

Download
memory/928-371-0x000000001A5E0000-0x000000001A656000-memory.dmp

Filesize
472KB

Download
memory/928-54-0x0000000000880000-0x0000000000D28000-memory.dmp

Filesize
4.7MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads