Overview

overview

10

Static

static

10

6badd02510...0f.exe

windows7-x64

1

6badd02510...0f.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-10-2023 20:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6badd02510e6c2a44b6f959e7079e7289f5b2e0c5c17d0ea767044519c8ba70f.exe

  • Size

    1.6MB

  • MD5

    2141eba660fcf03997759b17870d66fa

  • SHA1

    9d473c6c9e93624c4f227a323e7a7a4429d36fc7

  • SHA256

    6badd02510e6c2a44b6f959e7079e7289f5b2e0c5c17d0ea767044519c8ba70f

  • SHA512

    163c9bbde72961da86b50f89e01463602f53077e5e34863f9a267a8157b82b2d65bfc0e72e8b9469ae4c5ec132282ee1a8ae4266b24be336afe32ef6da664c12

  • SSDEEP

    24576:IIrb08mwuegATwvvCR5k2mHGM7qE31VBP2fSBJFvqwDSVXT5X6F9Dya:IKmyhEnCRTmmkXPfXvqFXT5Xw1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6badd02510e6c2a44b6f959e7079e7289f5b2e0c5c17d0ea767044519c8ba70f.exe
    "C:\Users\Admin\AppData\Local\Temp\6badd02510e6c2a44b6f959e7079e7289f5b2e0c5c17d0ea767044519c8ba70f.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2340-0-0x0000029E257E0000-0x0000029E25814000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2340-3-0x0000029E25810000-0x0000029E25820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2340-2-0x0000029E25810000-0x0000029E25820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2340-1-0x00007FFCC4250000-0x00007FFCC4D11000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2340-4-0x0000029E25810000-0x0000029E25820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2340-5-0x0000029E25810000-0x0000029E25820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2340-6-0x0000029E43930000-0x0000029E43938000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2340-7-0x0000029E43BB0000-0x0000029E43BE8000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2340-8-0x0000029E43B70000-0x0000029E43B7E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2340-21-0x00007FFCC4250000-0x00007FFCC4D11000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2340-22-0x0000029E25810000-0x0000029E25820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2340-23-0x0000029E25810000-0x0000029E25820000-memory.dmp

    Filesize

    64KB

    Download