6ded378bf47dbf5e769640206732495d6470f4ec45ac1497bbb338913889ff5b

Analysis

max time kernel
149s
max time network
282s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
14/10/2023, 01:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Monster Black Market V2.0.16.0 w DLC w Uncen/MonsterBlackMarket.exe
Size

638KB
MD5

2fba04830ca0d1854911f96d0a11242c
SHA1

2ea0bd960b99b8aad05546417e620367fa1a35b7
SHA256

b3ab8d098064acdd646d878570381ba180bbd40a785e45a39c0de7c55523db1d
SHA512

4f13d107cdfe5c099f318a233d32426ab3f71d13e874d54b9feb7c3462d1916a4e6bc34a1c8cb53f5da933c10245e392b9bc85c0c13834e388bbbc03e6a9bc2c
SSDEEP

12288:L4eCuedtIVlCPg20YCF4DggUjFVcgbV2:syGhHyko2

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	3672	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	3672	AUDIODG.EXE

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4384	MonsterBlackMarket.exe

Suspicious use of WriteProcessMemory 2 IoCs

description	pid	Process	procid_target
PID 4384 wrote to memory of 2000	4384	MonsterBlackMarket.exe	83
PID 4384 wrote to memory of 2000	4384	MonsterBlackMarket.exe	83

C:\Users\Admin\AppData\Local\Temp\Monster Black Market V2.0.16.0 w DLC w Uncen\MonsterBlackMarket.exe
"C:\Users\Admin\AppData\Local\Temp\Monster Black Market V2.0.16.0 w DLC w Uncen\MonsterBlackMarket.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:4384
- C:\Users\Admin\AppData\Local\Temp\Monster Black Market V2.0.16.0 w DLC w Uncen\UnityCrashHandler64.exe
  "C:\Users\Admin\AppData\Local\Temp\Monster Black Market V2.0.16.0 w DLC w Uncen\UnityCrashHandler64.exe" --attach 4384 2650908397568
  2⤵
  PID:2000

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x340 0x2ec
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:3672

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4384-0-0x0000026936890000-0x00000269368A0000-memory.dmp

Filesize
64KB

Download
memory/4384-1-0x0000026936770000-0x0000026936780000-memory.dmp

Filesize
64KB

Download
memory/4384-2-0x0000026936890000-0x00000269368A0000-memory.dmp

Filesize
64KB

Download
memory/4384-3-0x0000026ADA4D0000-0x0000026ADA4F0000-memory.dmp

Filesize
128KB

Download
memory/4384-4-0x0000026ADB8C0000-0x0000026ADB8D0000-memory.dmp

Filesize
64KB

Download
memory/4384-5-0x0000026B3FE70000-0x0000026B3FE80000-memory.dmp

Filesize
64KB

Download
memory/4384-6-0x0000026B401D0000-0x0000026B401E0000-memory.dmp

Filesize
64KB

Download
memory/4384-7-0x0000026B40220000-0x0000026B40230000-memory.dmp

Filesize
64KB

Download
memory/4384-8-0x0000026B40290000-0x0000026B402A0000-memory.dmp

Filesize
64KB

Download
memory/4384-9-0x0000026B40800000-0x0000026B40810000-memory.dmp

Filesize
64KB

Download
memory/4384-10-0x0000026B40810000-0x0000026B40820000-memory.dmp

Filesize
64KB

Download
memory/4384-11-0x0000026ADA4D0000-0x0000026ADA4F0000-memory.dmp

Filesize
128KB

Download
memory/4384-12-0x0000026B40820000-0x0000026B40830000-memory.dmp

Filesize
64KB

Download
memory/4384-13-0x0000026BC61E0000-0x0000026BC61F0000-memory.dmp

Filesize
64KB

Download
memory/4384-14-0x0000026ADB8C0000-0x0000026ADB8D0000-memory.dmp

Filesize
64KB

Download
memory/4384-15-0x0000026BC61F0000-0x0000026BC6200000-memory.dmp

Filesize
64KB

Download
memory/4384-16-0x0000026B3FE70000-0x0000026B3FE80000-memory.dmp

Filesize
64KB

Download
memory/4384-17-0x0000026BC6200000-0x0000026BC6210000-memory.dmp

Filesize
64KB

Download
memory/4384-18-0x0000026B401D0000-0x0000026B401E0000-memory.dmp

Filesize
64KB

Download
memory/4384-19-0x0000026BC6210000-0x0000026BC6220000-memory.dmp

Filesize
64KB

Download
memory/4384-20-0x0000026B40220000-0x0000026B40230000-memory.dmp

Filesize
64KB

Download
memory/4384-21-0x0000026BC6220000-0x0000026BC6230000-memory.dmp

Filesize
64KB

Download
memory/4384-22-0x0000026BC6230000-0x0000026BC6240000-memory.dmp

Filesize
64KB

Download
memory/4384-24-0x0000026B40290000-0x0000026B402A0000-memory.dmp

Filesize
64KB

Download
memory/4384-25-0x0000026BC6240000-0x0000026BC6250000-memory.dmp

Filesize
64KB

Download
memory/4384-27-0x0000026BC7220000-0x0000026BC7240000-memory.dmp

Filesize
128KB

Download
memory/4384-26-0x0000026B40800000-0x0000026B40810000-memory.dmp

Filesize
64KB

Download
memory/4384-28-0x0000026B40810000-0x0000026B40820000-memory.dmp

Filesize
64KB

Download
memory/4384-29-0x0000026BC7240000-0x0000026BC7250000-memory.dmp

Filesize
64KB

Download
memory/4384-30-0x0000026B40820000-0x0000026B40830000-memory.dmp

Filesize
64KB

Download
memory/4384-31-0x0000026BC7250000-0x0000026BC7260000-memory.dmp

Filesize
64KB

Download
memory/4384-32-0x0000026BC61E0000-0x0000026BC61F0000-memory.dmp

Filesize
64KB

Download
memory/4384-33-0x0000026BC7260000-0x0000026BC7270000-memory.dmp

Filesize
64KB

Download
memory/4384-35-0x0000026BC7380000-0x0000026BC7390000-memory.dmp

Filesize
64KB

Download
memory/4384-36-0x0000026BC7390000-0x0000026BC73A0000-memory.dmp

Filesize
64KB

Download
memory/4384-37-0x0000026BC6200000-0x0000026BC6210000-memory.dmp

Filesize
64KB

Download
memory/4384-38-0x0000026BC73A0000-0x0000026BC73B0000-memory.dmp

Filesize
64KB

Download
memory/4384-34-0x0000026BC61F0000-0x0000026BC6200000-memory.dmp

Filesize
64KB

Download
memory/4384-40-0x0000026BC73B0000-0x0000026BC73C0000-memory.dmp

Filesize
64KB

Download
memory/4384-41-0x0000026BC6220000-0x0000026BC6230000-memory.dmp

Filesize
64KB

Download
memory/4384-42-0x0000026BC81C0000-0x0000026BC81D0000-memory.dmp

Filesize
64KB

Download
memory/4384-43-0x0000026BC6230000-0x0000026BC6240000-memory.dmp

Filesize
64KB

Download
memory/4384-44-0x0000026BC6240000-0x0000026BC6250000-memory.dmp

Filesize
64KB

Download
memory/4384-39-0x0000026BC6210000-0x0000026BC6220000-memory.dmp

Filesize
64KB

Download
memory/4384-45-0x0000026BC8210000-0x0000026BC8220000-memory.dmp

Filesize
64KB

Download
memory/4384-47-0x0000026BC8220000-0x0000026BC8230000-memory.dmp

Filesize
64KB

Download
memory/4384-48-0x0000026BC8230000-0x0000026BC8240000-memory.dmp

Filesize
64KB

Download
memory/4384-49-0x0000026BC7240000-0x0000026BC7250000-memory.dmp

Filesize
64KB

Download
memory/4384-46-0x0000026BC7220000-0x0000026BC7240000-memory.dmp

Filesize
128KB

Download
memory/4384-50-0x0000026BC7250000-0x0000026BC7260000-memory.dmp

Filesize
64KB

Download
memory/4384-51-0x0000026BC8240000-0x0000026BC8250000-memory.dmp

Filesize
64KB

Download
memory/4384-52-0x0000026BC7260000-0x0000026BC7270000-memory.dmp

Filesize
64KB

Download
memory/4384-53-0x0000026AD9620000-0x0000026AD9630000-memory.dmp

Filesize
64KB

Download
memory/4384-54-0x0000026BC7380000-0x0000026BC7390000-memory.dmp

Filesize
64KB

Download
memory/4384-55-0x0000026BC7390000-0x0000026BC73A0000-memory.dmp

Filesize
64KB

Download
memory/4384-56-0x0000026B1C380000-0x0000026B1C390000-memory.dmp

Filesize
64KB

Download
memory/4384-57-0x0000026B1C390000-0x0000026B1C3A0000-memory.dmp

Filesize
64KB

Download
memory/4384-58-0x0000026BC73A0000-0x0000026BC73B0000-memory.dmp

Filesize
64KB

Download
memory/4384-59-0x0000026B1C3A0000-0x0000026B1C3B0000-memory.dmp

Filesize
64KB

Download
memory/4384-60-0x0000026BC73B0000-0x0000026BC73C0000-memory.dmp

Filesize
64KB

Download
memory/4384-61-0x0000026B1C3B0000-0x0000026B1C3C0000-memory.dmp

Filesize
64KB

Download
memory/4384-62-0x0000026BC81C0000-0x0000026BC81D0000-memory.dmp

Filesize
64KB

Download
memory/4384-64-0x0000026B1C3E0000-0x0000026B1C3F0000-memory.dmp

Filesize
64KB

Download
memory/4384-63-0x0000026B1C3C0000-0x0000026B1C3E0000-memory.dmp

Filesize
128KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads