Overview

overview

10

Static

static

10

6dc073f927...0e.exe

windows7-x64

1

6dc073f927...0e.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-10-2023 01:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6dc073f9270b23ebf7221ca43ec3167b6665b9393d9746cfc69d40123a66b90e.exe

  • Size

    1.7MB

  • MD5

    c1e81cc755e3f35fe4f56d2672638404

  • SHA1

    44550e282e60fb58b21df6f752ab73b3742f496f

  • SHA256

    6dc073f9270b23ebf7221ca43ec3167b6665b9393d9746cfc69d40123a66b90e

  • SHA512

    8c22d31142bac99dce5c93d62aa05e606980b3a433271dfdfc2d295a0d64f81347e7c3db7b341c20cdf18e299d06ec53915a1ed5226803a13922738ee25d23f2

  • SSDEEP

    49152:cU0W9+rQgGtHXOQz+XI9kx4eEyhInBXT5Xr1:Haqh+XT4eJhInBD5b1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6dc073f9270b23ebf7221ca43ec3167b6665b9393d9746cfc69d40123a66b90e.exe
    "C:\Users\Admin\AppData\Local\Temp\6dc073f9270b23ebf7221ca43ec3167b6665b9393d9746cfc69d40123a66b90e.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/208-0-0x000001E056B20000-0x000001E056B54000-memory.dmp

    Filesize

    208KB

    Download

  • memory/208-1-0x00007FFD19C90000-0x00007FFD1A751000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/208-2-0x000001E06F5F0000-0x000001E06F600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/208-3-0x000001E06F5F0000-0x000001E06F600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/208-4-0x000001E06F5F0000-0x000001E06F600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/208-5-0x000001E074850000-0x000001E074858000-memory.dmp

    Filesize

    32KB

    Download

  • memory/208-6-0x000001E074EC0000-0x000001E074EF8000-memory.dmp

    Filesize

    224KB

    Download

  • memory/208-7-0x000001E074E90000-0x000001E074E9E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/208-20-0x00007FFD19C90000-0x00007FFD1A751000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/208-21-0x000001E06F5F0000-0x000001E06F600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/208-22-0x000001E06F5F0000-0x000001E06F600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/208-23-0x000001E06F5F0000-0x000001E06F600000-memory.dmp

    Filesize

    64KB

    Download