Overview

overview

9

Static

static

3

TGX V5 - V...PC.dll

windows10-1703-x64

3

TGX V5 - V...PC.dll

windows10-2004-x64

3

TGX V5 - V...it.dll

windows10-1703-x64

1

TGX V5 - V...it.dll

windows10-2004-x64

1

TGX V5 - V...on.dll

windows10-1703-x64

1

TGX V5 - V...on.dll

windows10-2004-x64

1

TGX V5 - V...3.0.js

windows10-1703-x64

1

TGX V5 - V...3.0.js

windows10-2004-x64

1

TGX V5 - V...bot.js

windows10-1703-x64

1

TGX V5 - V...bot.js

windows10-2004-x64

1

TGX V5 - V...bot.js

windows10-1703-x64

1

TGX V5 - V...bot.js

windows10-2004-x64

1

TGX V5 - V... v2.js

windows10-1703-x64

1

TGX V5 - V... v2.js

windows10-2004-x64

1

TGX V5 - V...rer.js

windows10-1703-x64

1

TGX V5 - V...rer.js

windows10-2004-x64

1

TGX V5 - V...y 2.js

windows10-1703-x64

1

TGX V5 - V...y 2.js

windows10-2004-x64

1

TGX V5 - V... V3.js

windows10-1703-x64

1

TGX V5 - V... V3.js

windows10-2004-x64

1

TGX V5 - V...on.dll

windows10-1703-x64

1

TGX V5 - V...on.dll

windows10-2004-x64

1

TGX V5 - V...GX.exe

windows10-1703-x64

8

TGX V5 - V...GX.exe

windows10-2004-x64

8

TGX V5 - V...us.dll

windows10-1703-x64

9

TGX V5 - V...us.dll

windows10-2004-x64

9

TGX V5 - V...us.exe

windows10-1703-x64

1

TGX V5 - V...us.exe

windows10-2004-x64

1

TGX V5 - V...ua.xml

windows10-1703-x64

1

TGX V5 - V...ua.xml

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    09/06/2023, 02:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    TGX V5 - V1.0.0/TGX.exe

  • Size

    1.3MB

  • MD5

    678c8653640dd0f9d19e278674472d54

  • SHA1

    4a331b40f175cb0d9fc460e7cf9fd5783048551d

  • SHA256

    6fba7d910817ad1807a538e6a544c5fe2d16e39017ba40ad7c63beaa75f65cc0

  • SHA512

    06c5ae89aa5e5538198625f1532b5359b9f2f15d970e3f73869bf770fd50fac862727c658f16ea10d1f6267e7ab9eb9c1a091ff942a385c31d071c24f473b347

  • SSDEEP

    12288:zflguQwxRJ1cJ3DgRaSelVJDp2f7K33nQ3gwp/nhyE:zflgwRJ0iaSebJw63QR

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\TGX V5 - V1.0.0\TGX.exe
    "C:\Users\Admin\AppData\Local\Temp\TGX V5 - V1.0.0\TGX.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3144-116-0x0000000000950000-0x0000000000AAE000-memory.dmp

    Filesize

    1.4MB

    Download

  • memory/3144-117-0x0000000003090000-0x00000000030A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3144-118-0x0000000009D30000-0x0000000009D38000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3144-119-0x0000000009EB0000-0x0000000009EE8000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3144-120-0x000000000B030000-0x000000000B0E0000-memory.dmp

    Filesize

    704KB

    Download

  • memory/3144-121-0x000000000B510000-0x000000000B532000-memory.dmp

    Filesize

    136KB

    Download

  • memory/3144-122-0x000000000B540000-0x000000000B890000-memory.dmp

    Filesize

    3.3MB

    Download

  • memory/3144-123-0x0000000009720000-0x000000000972A000-memory.dmp

    Filesize

    40KB

    Download