Overview

overview

10

Static

static

10

cac4753478...77.exe

windows7-x64

1

cac4753478...77.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-08-2023 00:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cac47534780167b85e543500594055836fe1325f12a38a034eaeb4e2543ebb77.exe

  • Size

    1.7MB

  • MD5

    2255a68a4c2caeae79f93daad09be24a

  • SHA1

    943cf50c12235a035ab8d8e6feab47a9dd1ce80a

  • SHA256

    cac47534780167b85e543500594055836fe1325f12a38a034eaeb4e2543ebb77

  • SHA512

    79817604f73a7b530e190f08cb2d628381fb13a533ec704fe595276c52e90cae7256ec6ce168e9f9faf41b7e3f2050916fd69310ef89a908f93a588023eec20e

  • SSDEEP

    49152:uzIZS1RORGwS6On/5EzXT5XuCy1IqI71:K396OxWD5eCyQ71

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\cac47534780167b85e543500594055836fe1325f12a38a034eaeb4e2543ebb77.exe
    "C:\Users\Admin\AppData\Local\Temp\cac47534780167b85e543500594055836fe1325f12a38a034eaeb4e2543ebb77.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3880-133-0x00007FFE6C1C0000-0x00007FFE6CC81000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3880-134-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-135-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-136-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-137-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-138-0x0000020EEC5C0000-0x0000020EEC5C8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3880-139-0x0000020EECC40000-0x0000020EECC78000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3880-140-0x0000020EECC00000-0x0000020EECC0E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3880-153-0x00007FFE6C1C0000-0x00007FFE6CC81000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3880-154-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-155-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-156-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3880-157-0x0000020EE89F0000-0x0000020EE8A00000-memory.dmp

    Filesize

    64KB

    Download