Overview

overview

10

Static

static

10

90482ffde0...61.exe

windows7-x64

1

90482ffde0...61.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-10-2023 01:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    90482ffde0d53db26d391d45fa084133a06f51684b557770cf3681df911e0f61.exe

  • Size

    1.6MB

  • MD5

    d2d0d580d64a1442347f250ac878fe68

  • SHA1

    e0bc8a49dd8150b48518db2180bebf8d7934fcc1

  • SHA256

    90482ffde0d53db26d391d45fa084133a06f51684b557770cf3681df911e0f61

  • SHA512

    907cc30739222740b49d2220a8ee2b4ff2ecfcf681fffd2677927068265f31a160eee8877af35e151b8d2af0f6beac858ef6894be760001c182915f08ee7e558

  • SSDEEP

    24576:BcLLoUsUsvmX6mzvW2wTOm7Vidimcbq1KO0ZDSVXT5Xma10017KNlya:BcYUivmqmzujTOm0cfhO0OXT5Xwqi1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\90482ffde0d53db26d391d45fa084133a06f51684b557770cf3681df911e0f61.exe
    "C:\Users\Admin\AppData\Local\Temp\90482ffde0d53db26d391d45fa084133a06f51684b557770cf3681df911e0f61.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2460-0-0x000001603DC30000-0x000001603DC64000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2460-1-0x00007FFEF8390000-0x00007FFEF8E51000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2460-2-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-3-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-4-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-5-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-6-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-7-0x0000016057FF0000-0x0000016057FF8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2460-8-0x0000016058070000-0x00000160580A8000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2460-9-0x0000016058040000-0x000001605804E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2460-13-0x00007FFEF8390000-0x00007FFEF8E51000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2460-14-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-15-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-16-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-17-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2460-18-0x000001603DCB0000-0x000001603DCC0000-memory.dmp

    Filesize

    64KB

    Download