Overview

overview

10

Static

static

10

58d0cda7ef...6a.exe

windows7-x64

1

58d0cda7ef...6a.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-10-2023 19:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    58d0cda7efb9fcde2f7ecf81c8d2b79420720c9e1e2c8a69c41bb9343a141f6a.exe

  • Size

    1.9MB

  • MD5

    9440b67e62f9c2a631ed1ffcd4481397

  • SHA1

    16b946d7efbe05eaacc3e0d30d27751631c0bb8d

  • SHA256

    58d0cda7efb9fcde2f7ecf81c8d2b79420720c9e1e2c8a69c41bb9343a141f6a

  • SHA512

    fa33fa593d86a235d430e45195f60d089e8620f8b743534e1cdb40feb662d6de067a5e2b1d06e56198f1e5a15aad1e52506a5deb97ca383de81ab6d0cb703144

  • SSDEEP

    49152:R1x9qEJDOcVvEnMtS44r774ud24NC5XT5XS31:jDOcBEnQMr7MI2aC5D5C31

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\58d0cda7efb9fcde2f7ecf81c8d2b79420720c9e1e2c8a69c41bb9343a141f6a.exe
    "C:\Users\Admin\AppData\Local\Temp\58d0cda7efb9fcde2f7ecf81c8d2b79420720c9e1e2c8a69c41bb9343a141f6a.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3908-0-0x000002BE39700000-0x000002BE39734000-memory.dmp

    Filesize

    208KB

    Download

  • memory/3908-1-0x00007FF8B7980000-0x00007FF8B8441000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3908-2-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3908-3-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3908-4-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3908-5-0x000002BE39DD0000-0x000002BE39DD8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3908-6-0x000002BE39E60000-0x000002BE39E98000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3908-7-0x000002BE39E30000-0x000002BE39E3E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3908-20-0x00007FF8B7980000-0x00007FF8B8441000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3908-21-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3908-22-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3908-23-0x000002BE52450000-0x000002BE5256F000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/3908-24-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3908-25-0x000002BE39ED0000-0x000002BE39EE0000-memory.dmp

    Filesize

    64KB

    Download