Overview

overview

3

Static

static

3

6e6b14f06c...f9.exe

windows7-x64

1

6e6b14f06c...f9.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    152s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2023 05:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6e6b14f06c3167641c0dfd6be4aab2716cb8489647241eba89bfd25b3be306f9.exe

  • Size

    7.4MB

  • MD5

    2f6e69894dca46774c9f6a4a49ac3e8f

  • SHA1

    3f96c2c3fe0775982518242e5f4cd1ec55eb18f1

  • SHA256

    6e6b14f06c3167641c0dfd6be4aab2716cb8489647241eba89bfd25b3be306f9

  • SHA512

    dd7c1bc2d082df17a2f490c074a152961084b154e1713a8fd8589a18c6669d6b70abc3d92e12480fef00815823104cfef36b709873fc55d61b4191a2870e0300

  • SSDEEP

    196608:T1z/Z5PZ6NS3XophlBVDHqwbhVaBV13rtWjev2JVzA:OhT9HqEDrD

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6e6b14f06c3167641c0dfd6be4aab2716cb8489647241eba89bfd25b3be306f9.exe
    "C:\Users\Admin\AppData\Local\Temp\6e6b14f06c3167641c0dfd6be4aab2716cb8489647241eba89bfd25b3be306f9.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:1756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
    Filesize

    3KB

    MD5

    79885db374c11448bb4590913165a2fb

    SHA1

    74a311dcba5c17a4a9afba30fd424068dc57e5ad

    SHA256

    b56343ab0a9d260938fa80ed3f96a53a676203cda7aa90f2939cbc53f61b2e7a

    SHA512

    bd129f5a09535db0895257242a8232165a28adcaae668f5c21cae5ea0603f6cc6e45ed2a33a3f19f5c1c40c7bcde6e7c1cf1eaf4827a5785133d7b869a399f45

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
    Filesize

    3KB

    MD5

    7eae789b9c9cfeee67b4df186b283cb1

    SHA1

    975641764a693c651027b9fde4158461e2c41b2c

    SHA256

    03290a3e6ac464f1eb99ccc49c5d79943879045f0702adef352466384b585a78

    SHA512

    c045e5263c62751a86f79ac692745adbf457be50d1c8a43a08bf5dd549f583a53f5fcddf1ca5df5398d696aeca780f569dd7db4facde99e392ab204b69df60cf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
    Filesize

    642B

    MD5

    bbe24867001a7f25ca3c459417e64b53

    SHA1

    8ebd60a951b5b0b981a0f573d8caa4a17f9dad85

    SHA256

    ff7c0ecf544bae7bcb50f095e5fdeb694aa6a541e7f682433face55329b76514

    SHA512

    7a755317cedde1d224d346432a14219c983ff62596a49876e37027c71dbf8614d0378633cfbd9f0817d59eb4f4c94ec2e2a60be10a70bde9c1e3e9b962ca4ccb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\ÅäÖÃ.ini
    Filesize

    3KB

    MD5

    d29a379ef3e96cffb1a185a9e4fe3db5

    SHA1

    df6944d2835d498cc0c138c6a089052c0e04760b

    SHA256

    31440fa6ad110448d4ff3cebfeb43ffe8654f499e1c55d0a3b140bbe1430add5

    SHA512

    ffed27cec0b46e36a8f15a682983a0c6e163e3006aba4e9c60bf47d6769e0e76239cdd6679f335424a40c46ccf6660f7dd0187a09bb64136e3b78ef5098803a7

    Download Submit

  • memory/1756-152-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-280-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-6-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-2-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-192-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-193-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-1-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-220-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-279-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-0-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-327-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-328-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-386-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-843-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-936-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-1120-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/1756-1121-0x0000000000400000-0x0000000000B9E000-memory.dmp

    Filesize

    7.6MB

    Download