Overview

overview

10

Static

static

10

f7cc184aa7...ae.exe

windows7-x64

1

f7cc184aa7...ae.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230831-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230831-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05-09-2023 16:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f7cc184aa7d47660a6200e0ad24bf6c818050ec30e9726765b627a5e0bb08dae.exe

  • Size

    1.7MB

  • MD5

    99cfa97dd3d9e4072df01df78ac912ee

  • SHA1

    266ead16077d0e559dc4640ea49594f3d331aaa3

  • SHA256

    f7cc184aa7d47660a6200e0ad24bf6c818050ec30e9726765b627a5e0bb08dae

  • SHA512

    6b42b88eaf59bd45b94b72f137503152c3984af3382d8a2694e23e9c57059e304db6b0bd8a6bb1fe14d27fdd6f614d5fb28b0de8ac41aa32359eeeee04dcd26e

  • SSDEEP

    49152:2zIZSgUORywS6On/Wttm12XT5XAkMjf1W:yn96O+FD5wHjf1W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f7cc184aa7d47660a6200e0ad24bf6c818050ec30e9726765b627a5e0bb08dae.exe
    "C:\Users\Admin\AppData\Local\Temp\f7cc184aa7d47660a6200e0ad24bf6c818050ec30e9726765b627a5e0bb08dae.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3640-0-0x00007FFC35AE0000-0x00007FFC365A1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3640-1-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-2-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-3-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-4-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-5-0x000001A777500000-0x000001A777508000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3640-6-0x000001A77CD60000-0x000001A77CD98000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3640-7-0x000001A777510000-0x000001A77751E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3640-20-0x00007FFC35AE0000-0x00007FFC365A1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3640-21-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-22-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-23-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-24-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3640-25-0x000001A777530000-0x000001A777540000-memory.dmp

    Filesize

    64KB

    Download