Overview

overview

10

Static

static

10

09000799.exe

windows7-x64

1

09000799.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12-06-2023 11:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    09000799.exe

  • Size

    1.8MB

  • MD5

    a8e21d0a395957079d29dab3f6d2f0c7

  • SHA1

    4ded3b53f149f64298289d52a98288cc56a62005

  • SHA256

    a9e2eb82a9248f900aa399ac902d78778d5391457c95e202f0e4331bf9b22b37

  • SHA512

    0210430aeb6b98eed77c3cb58d25fe7948d1aa1074490d6f1799ab225e6e5ed5b9d0e6fface71332446b2b40faeb044138ea58c18530dee5bdb7aacc8f5eb046

  • SSDEEP

    24576:xslcze89r3WOSPQud80RRp/8mUeUDSVXT5XLyaT7Y7gbaVD:te896Xou7Rz8mB5XT5XL1fYsbaV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\09000799.exe
    "C:\Users\Admin\AppData\Local\Temp\09000799.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2752-135-0x000002DE30E10000-0x000002DE30E42000-memory.dmp

    Filesize

    200KB

    Download

  • memory/2752-138-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-139-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-141-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-140-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-142-0x000002DE4E260000-0x000002DE4E268000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2752-143-0x000002DE4E8E0000-0x000002DE4E918000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2752-144-0x000002DE4E8A0000-0x000002DE4E8AE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2752-148-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-149-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-150-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-151-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-152-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2752-153-0x000002DE31440000-0x000002DE31450000-memory.dmp

    Filesize

    64KB

    Download