Overview

overview

3

Static

static

3

ec109409cd...c9.exe

windows7-x64

3

ec109409cd...c9.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/08/2023, 07:51

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ec109409cd522a4227b2fe34dde95726bf3eec0055f214a06fac6479280e50c9.exe

  • Size

    7.4MB

  • MD5

    02e6a94e84d5d18da59ff24677ee0208

  • SHA1

    d2f8567317203baeeff7f8cbfb2bfb5c72fffd14

  • SHA256

    ec109409cd522a4227b2fe34dde95726bf3eec0055f214a06fac6479280e50c9

  • SHA512

    ad6f79d9e38a4b76ebb1d4a38aec6edf42cb7010038a6ead932ed7ba2c5d99c9c70e211bee54aa692a480b0a9246338df2262fd3622649d899398b0b355b7f29

  • SSDEEP

    196608:BlJxXX2gY/jpiKWyybxaaVGeV/BV13rtWvev/JVq:Bl/Kl2bxXVGw1

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ec109409cd522a4227b2fe34dde95726bf3eec0055f214a06fac6479280e50c9.exe
    "C:\Users\Admin\AppData\Local\Temp\ec109409cd522a4227b2fe34dde95726bf3eec0055f214a06fac6479280e50c9.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:3528

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
          Filesize

          4KB

          MD5

          9b0ac98df323f6201cb7b95a7878de7d

          SHA1

          04d8e70f7929d38173f0fdd1500eed69378d8476

          SHA256

          07b91ec3dffdfc3b95a162cdfe2f478de65e41d7bbb3e2bcde312791d4c3018e

          SHA512

          02d913d7f4130a0f6c5754f4e91f5cca0a93a14e5bd5d3879f0cc77921271cad9459f26b0f1cd31a6a0f7d169b390e2092e2150675829eac3ddb7bd3988cd76a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
          Filesize

          1KB

          MD5

          839b81845c9fdd2bbdae5ed0bed0ee06

          SHA1

          f542f3c389132211787b936fd9c357386b3ff0cf

          SHA256

          9f6e84ebacb080157b875683c7b7182bac770d42732895a4a733cd4a3ffcdeba

          SHA512

          cf0974c5e0fe2b3ac775c1ea0b891a2cbecbdf49c5903ce6866367def0e8a9604620031a8e8f1371ef10997bd425364fcbe0b8b123eb32bcb14647194560e3da

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
          Filesize

          1KB

          MD5

          39dc0771a973aacbb2682126c50d7a07

          SHA1

          9315ebd88c35d90ffb8c66bafa71f66dde16e256

          SHA256

          053c82e7e2ddb7bdc16a5ec8677408d48a724c1611efa1e07fe58b662675aebc

          SHA512

          8d67bf6cf110c502ef71b93de80bcb11f3a671a6f3ff546410e2b51639cc67ced0e689b93893e768887d3d5828f491654a7c4da23dd866b6b0cfec66fabab90b

          Download Submit

        • memory/3528-296-0x00000000050C0000-0x00000000050C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-378-0x00000000050C0000-0x00000000050C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-5-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-9-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-3-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-2-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-1-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-0-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-298-0x0000000005210000-0x0000000005211000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-4-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-379-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-642-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download

        • memory/3528-1113-0x0000000005210000-0x0000000005211000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-1112-0x00000000050C0000-0x00000000050C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-1114-0x0000000005210000-0x0000000005211000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-1298-0x00000000050C0000-0x00000000050C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-1297-0x00000000050C0000-0x00000000050C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-1436-0x00000000050C0000-0x00000000050C1000-memory.dmp

          Filesize

          4KB

          Download

        • memory/3528-7144-0x0000000000400000-0x0000000000B9E000-memory.dmp

          Filesize

          7.6MB

          Download