Overview

overview

7

Static

static

3

Spoofer.exe

windows7-x64

7

Spoofer.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    144s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/08/2023, 22:53

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Spoofer.exe

  • Size

    1.1MB

  • MD5

    b02a7176acea5f175589f5a72fc773d1

  • SHA1

    ab0e59e8321a56bdc52a1091618179cf4ed42fcc

  • SHA256

    8b82aae7fcb76b106ed10c6deb512b9377ee8709fb427a55835ec942e13cf033

  • SHA512

    342aca131442d21dd6262a0f5a894347ca4b465656696c1427fa575ce4a485ced45ea86c6b749e84e555b393078ff73e41866e9da6eae60a763a1adfe6521671

  • SSDEEP

    24576:4k70Trcw17bZ3jpy5MWulWIQo3lsEdudzLeFn8ZwMt:4kQTAw11j85UIIQo1sNpeF8ZwM

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Spoofer.exe
    "C:\Users\Admin\AppData\Local\Temp\Spoofer.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of AdjustPrivilegeToken
    PID:208

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\16ec68cf-d28f-4048-90c5-4286b379e033\SiticoneDotNetRT.dll
          Filesize

          136KB

          MD5

          9af5eb006bb0bab7f226272d82c896c7

          SHA1

          c2a5bb42a5f08f4dc821be374b700652262308f0

          SHA256

          77dc05a6bda90757f66552ee3f469b09f1e00732b4edca0f542872fb591ed9db

          SHA512

          7badd41be4c1039302fda9bba19d374ec9446ce24b7db33b66bee4ef38180d1abcd666d2aea468e7e452aa1e1565eedfefed582bf1c2fe477a4171d99d48772a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\16ec68cf-d28f-4048-90c5-4286b379e033\SiticoneDotNetRT.dll
          Filesize

          136KB

          MD5

          9af5eb006bb0bab7f226272d82c896c7

          SHA1

          c2a5bb42a5f08f4dc821be374b700652262308f0

          SHA256

          77dc05a6bda90757f66552ee3f469b09f1e00732b4edca0f542872fb591ed9db

          SHA512

          7badd41be4c1039302fda9bba19d374ec9446ce24b7db33b66bee4ef38180d1abcd666d2aea468e7e452aa1e1565eedfefed582bf1c2fe477a4171d99d48772a

          Download Submit

        • memory/208-176-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-156-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-138-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-137-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-140-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-142-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-144-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-146-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-148-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-150-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-152-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-154-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-178-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-158-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-160-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-162-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-164-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-166-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-168-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-170-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-172-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-174-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-136-0x0000000005040000-0x00000000055E4000-memory.dmp

          Filesize

          5.6MB

          Download

        • memory/208-133-0x00000000751E0000-0x0000000075990000-memory.dmp

          Filesize

          7.7MB

          Download

        • memory/208-194-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-182-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-184-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-186-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-188-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-190-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-192-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-180-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-196-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-198-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-200-0x00000000055F0000-0x0000000005721000-memory.dmp

          Filesize

          1.2MB

          Download

        • memory/208-421-0x00000000751E0000-0x0000000075990000-memory.dmp

          Filesize

          7.7MB

          Download

        • memory/208-1986-0x0000000004DB0000-0x0000000004DC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/208-1987-0x0000000004E50000-0x0000000004EE2000-memory.dmp

          Filesize

          584KB

          Download

        • memory/208-1988-0x00000000058A0000-0x00000000058AA000-memory.dmp

          Filesize

          40KB

          Download

        • memory/208-1989-0x0000000005990000-0x00000000059F6000-memory.dmp

          Filesize

          408KB

          Download

        • memory/208-135-0x0000000004DB0000-0x0000000004DC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/208-1997-0x0000000071970000-0x00000000719A7000-memory.dmp

          Filesize

          220KB

          Download

        • memory/208-134-0x0000000004DB0000-0x0000000004DC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/208-3364-0x0000000004DB0000-0x0000000004DC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/208-3460-0x0000000071970000-0x00000000719A7000-memory.dmp

          Filesize

          220KB

          Download

        • memory/208-13015-0x0000000004DB0000-0x0000000004DC0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/208-13016-0x0000000004DB0000-0x0000000004DC0000-memory.dmp

          Filesize

          64KB

          Download