Overview

overview

3

Static

static

3

212b0f237a...JC.exe

windows7-x64

1

212b0f237a...JC.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    84s
  • max time network
    136s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/10/2023, 14:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    212b0f237a07c0bacc3fe4b7c38ad5b28b3b230bc93d2e4f292861f802a22f41_JC.exe

  • Size

    3.1MB

  • MD5

    add29a185e990ee7eb0bb41294c0869b

  • SHA1

    c2f237b205a721b23d00fbce6ce27d5f8ecf81b1

  • SHA256

    212b0f237a07c0bacc3fe4b7c38ad5b28b3b230bc93d2e4f292861f802a22f41

  • SHA512

    13fda4cd1010203674f88cac7e69ad4ef684e0607d41b53c1d883745ed42661d70bfacc7199c1e4a2842ce3dfffe331273a47039d7c86d23afc1af0f1ae84188

  • SSDEEP

    49152:B/ZzYR8VwxhkgRtPt/rap9lhB9e5FEQa7hz/WMBhHfDqLddN:B/FTi++Ql4FEQaxuMBh/DqLdd

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\212b0f237a07c0bacc3fe4b7c38ad5b28b3b230bc93d2e4f292861f802a22f41_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\212b0f237a07c0bacc3fe4b7c38ad5b28b3b230bc93d2e4f292861f802a22f41_JC.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1056-0-0x00000000751E0000-0x0000000075990000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/1056-1-0x0000000000240000-0x000000000055C000-memory.dmp

    Filesize

    3.1MB

    Download

  • memory/1056-2-0x00000000054F0000-0x0000000005A94000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/1056-3-0x0000000004F40000-0x0000000004FD2000-memory.dmp

    Filesize

    584KB

    Download

  • memory/1056-4-0x00000000051B0000-0x0000000005372000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1056-5-0x0000000005080000-0x000000000511C000-memory.dmp

    Filesize

    624KB

    Download

  • memory/1056-6-0x0000000005120000-0x0000000005186000-memory.dmp

    Filesize

    408KB

    Download

  • memory/1056-7-0x0000000005040000-0x0000000005050000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1056-8-0x0000000006590000-0x0000000006ABC000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/1056-9-0x0000000007580000-0x000000000758A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/1056-10-0x0000000005040000-0x0000000005050000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1056-11-0x0000000005040000-0x0000000005050000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1056-12-0x00000000751E0000-0x0000000075990000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/1056-13-0x0000000005040000-0x0000000005050000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1056-14-0x0000000005040000-0x0000000005050000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1056-15-0x0000000005040000-0x0000000005050000-memory.dmp

    Filesize

    64KB

    Download