Analysis
-
max time kernel
142s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
-
submitted
04/08/2023, 12:34
General
-
Target
agent.exe
-
Size
11.1MB
-
MD5
210bc6fecb38b63fb362468d13758ac3
-
SHA1
65d2081a0b8d4b68be9361bfc58cc70c8a1f74d4
-
SHA256
22f5fe6be6579ef5dfa44fd652e6b87f9877260b049403a4667ece20fa175b13
-
SHA512
17aeb09e13d350329a4901f387c24837843eb4d22396d90117d5f78c3ef0edf3849ec23223b5a19c7c9292dff8e0948751c304808474ac7489bba70b797681de
-
SSDEEP
49152:dEYObma+b+8Rrb/TivO90d7HjmAFd4A64nsfJmMolu40sD1RipclPHlQVxhWDViN:Ok+M+1ovhQDqZhqdaxMvL3EnBK/k6R4
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 5 IoCs
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\agent.exe"C:\Users\Admin\AppData\Local\Temp\agent.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken