Overview

overview

10

Static

static

10

87cd4ceff4...27.exe

windows7-x64

1

87cd4ceff4...27.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31-08-2023 09:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    87cd4ceff42a87166065e064e8bf943fda13676c6352b2e41798475e44dedf27.exe

  • Size

    1.6MB

  • MD5

    90a2da428260f7d223c15a648addd630

  • SHA1

    05e02c67b2985b2f50b6a080a483c855082ea8ab

  • SHA256

    87cd4ceff42a87166065e064e8bf943fda13676c6352b2e41798475e44dedf27

  • SHA512

    ff54afbbd9ef9c40a5d12ec066d4d26c9a381887d1bc9fdce7b1e332a14fad23cd57e4fe93af64eb45b01a5901cff5a587deea3d78d3a01401480ef603eb0778

  • SSDEEP

    49152:8GlYwBkqMsX8EZKh+n711kLXT5Xx3ogN1:/sqZCwkLD5B3oS1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\87cd4ceff42a87166065e064e8bf943fda13676c6352b2e41798475e44dedf27.exe
    "C:\Users\Admin\AppData\Local\Temp\87cd4ceff42a87166065e064e8bf943fda13676c6352b2e41798475e44dedf27.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:4412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4412-0-0x00007FFAFBD90000-0x00007FFAFC851000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4412-1-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4412-2-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4412-3-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4412-4-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4412-5-0x0000023675070000-0x0000023675078000-memory.dmp

    Filesize

    32KB

    Download

  • memory/4412-6-0x0000023675700000-0x0000023675738000-memory.dmp

    Filesize

    224KB

    Download

  • memory/4412-7-0x0000023675090000-0x000002367509E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/4412-20-0x00007FFAFBD90000-0x00007FFAFC851000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4412-21-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4412-22-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4412-23-0x000002366F800000-0x000002366F810000-memory.dmp

    Filesize

    64KB

    Download