Overview

overview

7

Static

static

3

Spoofer.exe

windows7-x64

7

Spoofer.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    135s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07/08/2023, 22:53

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Spoofer.exe

  • Size

    1.1MB

  • MD5

    b02a7176acea5f175589f5a72fc773d1

  • SHA1

    ab0e59e8321a56bdc52a1091618179cf4ed42fcc

  • SHA256

    8b82aae7fcb76b106ed10c6deb512b9377ee8709fb427a55835ec942e13cf033

  • SHA512

    342aca131442d21dd6262a0f5a894347ca4b465656696c1427fa575ce4a485ced45ea86c6b749e84e555b393078ff73e41866e9da6eae60a763a1adfe6521671

  • SSDEEP

    24576:4k70Trcw17bZ3jpy5MWulWIQo3lsEdudzLeFn8ZwMt:4kQTAw11j85UIIQo1sNpeF8ZwM

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Spoofer.exe
    "C:\Users\Admin\AppData\Local\Temp\Spoofer.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of AdjustPrivilegeToken
    PID:2052

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\16ec68cf-d28f-4048-90c5-4286b379e033\SiticoneDotNetRT.dll
          Filesize

          136KB

          MD5

          9af5eb006bb0bab7f226272d82c896c7

          SHA1

          c2a5bb42a5f08f4dc821be374b700652262308f0

          SHA256

          77dc05a6bda90757f66552ee3f469b09f1e00732b4edca0f542872fb591ed9db

          SHA512

          7badd41be4c1039302fda9bba19d374ec9446ce24b7db33b66bee4ef38180d1abcd666d2aea468e7e452aa1e1565eedfefed582bf1c2fe477a4171d99d48772a

          Download Submit

        • \Users\Admin\AppData\Local\Temp\16ec68cf-d28f-4048-90c5-4286b379e033\SiticoneDotNetRT.dll
          Filesize

          136KB

          MD5

          9af5eb006bb0bab7f226272d82c896c7

          SHA1

          c2a5bb42a5f08f4dc821be374b700652262308f0

          SHA256

          77dc05a6bda90757f66552ee3f469b09f1e00732b4edca0f542872fb591ed9db

          SHA512

          7badd41be4c1039302fda9bba19d374ec9446ce24b7db33b66bee4ef38180d1abcd666d2aea468e7e452aa1e1565eedfefed582bf1c2fe477a4171d99d48772a

          Download Submit

        • memory/2052-53-0x0000000004C30000-0x0000000004D68000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-54-0x00000000741E0000-0x00000000748CE000-memory.dmp

          Filesize

          6.9MB

          Download

        • memory/2052-55-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-56-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-57-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-58-0x0000000004A20000-0x0000000004B56000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-59-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-60-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-62-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-64-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-66-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-68-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-70-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-72-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-74-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-76-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-78-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-80-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-82-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-84-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-86-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-88-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-90-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-92-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-94-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-96-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-98-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-100-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-102-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-104-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-106-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-108-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-110-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-112-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-114-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-116-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-118-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-120-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-122-0x0000000004A20000-0x0000000004B51000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/2052-368-0x00000000741E0000-0x00000000748CE000-memory.dmp

          Filesize

          6.9MB

          Download

        • memory/2052-619-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-787-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-1910-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-1911-0x0000000005410000-0x00000000055C0000-memory.dmp

          Filesize

          1.7MB

          Download

        • memory/2052-1912-0x00000000055C0000-0x0000000005768000-memory.dmp

          Filesize

          1.7MB

          Download

        • memory/2052-1918-0x0000000073940000-0x0000000073977000-memory.dmp

          Filesize

          220KB

          Download

        • memory/2052-2900-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-3130-0x0000000073940000-0x0000000073977000-memory.dmp

          Filesize

          220KB

          Download

        • memory/2052-12937-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-12938-0x0000000006DA0000-0x0000000006EA0000-memory.dmp

          Filesize

          1024KB

          Download

        • memory/2052-12939-0x0000000004BF0000-0x0000000004C30000-memory.dmp

          Filesize

          256KB

          Download

        • memory/2052-12940-0x0000000006DA0000-0x0000000006EA0000-memory.dmp

          Filesize

          1024KB

          Download

        • memory/2052-12941-0x00000000741E0000-0x00000000748CE000-memory.dmp

          Filesize

          6.9MB

          Download

        • memory/2052-12942-0x0000000073940000-0x0000000073977000-memory.dmp

          Filesize

          220KB

          Download