Overview

overview

3

Static

static

3

mw_fixer_upd.exe

windows7-x64

1

mw_fixer_upd.exe

windows10-2004-x64

1

Resubmissions

27-06-2023 13:16

230627-qh3vkafa7x 3

27-06-2023 11:49

230627-ny2lbsdh78 3

27-06-2023 11:04

230627-m6rknadg99 3

27-06-2023 10:54

230627-mzt27sdg87 4

27-06-2023 10:46

230627-mt2vvsdg72 3

27-06-2023 10:40

230627-mqwjnsef9w 3

27-06-2023 10:34

230627-ml65lsef8t 8

27-06-2023 10:25

230627-mf5dtsdg32 3

27-06-2023 10:20

230627-mdlhyaef6w 3

27-06-2023 10:10

230627-l7twqsdf86 3

Analysis

  • max time kernel
    53s
  • max time network
    65s
  • platform
    windows7_x64
  • resource
    win7-20230621-en
  • resource tags

    arch:x64arch:x86image:win7-20230621-enlocale:en-usos:windows7-x64system
  • submitted
    27-06-2023 09:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    mw_fixer_upd.exe

  • Size

    1.4MB

  • MD5

    b71ceec4d2fa2b92317a2cf5b6da57d2

  • SHA1

    13ffc0de36ced78ac6265a2218eaab9febd2ec37

  • SHA256

    dc1f4cfd064c60ac539523c4154729bf6582f5f0a90e58411155c4ad94a80739

  • SHA512

    3ad188dd6596b35053607c0eeeb0fa780475c633ada516ac043c39cd3d381f482abc1af72732aa199a673a9fa3ef446cad190e37aea8511e65e450200d7f2aaf

  • SSDEEP

    24576:H+HmINIU4dInPT2LgQgkzBdsRfOndZEEbZjH+B1LJ:H+GaIU4dSaL/Jz3n3DeBF

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 6 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\mw_fixer_upd.exe
    "C:\Users\Admin\AppData\Local\Temp\mw_fixer_upd.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1168
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x544
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1732
  • C:\Users\Admin\AppData\Local\Temp\mw_fixer_upd.exe
    "C:\Users\Admin\AppData\Local\Temp\mw_fixer_upd.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1564
  • C:\Users\Admin\AppData\Local\Temp\mw_fixer_upd.exe
    "C:\Users\Admin\AppData\Local\Temp\mw_fixer_upd.exe"
    1⤵
      PID:1960

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1168-54-0x00000000013E0000-0x000000000154A000-memory.dmp

      Filesize

      1.4MB

      Download

    • memory/1168-55-0x0000000000130000-0x0000000000136000-memory.dmp

      Filesize

      24KB

      Download

    • memory/1168-56-0x000000001B140000-0x000000001B1C0000-memory.dmp

      Filesize

      512KB

      Download

    • memory/1168-57-0x00000000001D0000-0x00000000001DE000-memory.dmp

      Filesize

      56KB

      Download

    • memory/1564-58-0x00000000003D0000-0x000000000053A000-memory.dmp

      Filesize

      1.4MB

      Download

    • memory/1564-59-0x0000000000630000-0x00000000006B0000-memory.dmp

      Filesize

      512KB

      Download