7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c

Analysis

max time kernel
148s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
31/10/2023, 07:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c.exe
Size

1.5MB
MD5

674e62871461c1824ebe10ea6460c71b
SHA1

aab7768cdc3f5a9d8ece0f08cbf9f0f82c34685d
SHA256

7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c
SHA512

4370dbd893ca7bf4d3814e6c8f5a9f8d43896e9a6d96c228a7ef32f37cbc6800c3ebe761a72e8a5982a3a6d371305820e3e6145085866e7f8de28a8b795c4435
SSDEEP

24576:un8XoKkFkS+jHab6v6+osuBw6RDATh4P/huy6Vkl2OaerqDsqO0:q+LafBwqd+YFaej

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
2844	msedgewebview2.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2844	msedgewebview2.exe

Suspicious use of WriteProcessMemory 2 IoCs

description	pid	Process	procid_target
PID 4580 wrote to memory of 2844	4580	7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c.exe	91
PID 4580 wrote to memory of 2844	4580	7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c.exe	91

C:\Users\Admin\AppData\Local\Temp\7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c.exe
"C:\Users\Admin\AppData\Local\Temp\7d09bc620322c63444d5807fa81979a2365aac4d0de3abdc9d8d37db0497957c.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:4580
- C:\Users\Admin\AppData\Local\Temp\msedgewebview2.exe
  C:\Users\Admin\AppData\Local\Temp\msedgewebview2.exe -wegame
  2⤵
  - Executes dropped EXE
  - Suspicious use of AdjustPrivilegeToken
  PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\msedgewebview2.exe

Filesize
1.1MB

MD5
5baafce0f697ea2e5f71f5580847542c

SHA1
cc0379c0a762cbc707c45542a1b68c05c8964c6b

SHA256
fab8b7f7d3c557644f7c381fc2cfd2d88cb65bbadec15fc5aa7590d26bb6f985

SHA512
5f363afd46db9ce1973e0351b04ee67435b3646be509eb0c4521697d794a3e32abe88e12abe32550cb0ec018054be2b68a16d0896e084c94f617a21e6e07604f

Download Submit
C:\Users\Admin\AppData\Local\Temp\msedgewebview2.exe

Filesize
1.1MB

MD5
5baafce0f697ea2e5f71f5580847542c

SHA1
cc0379c0a762cbc707c45542a1b68c05c8964c6b

SHA256
fab8b7f7d3c557644f7c381fc2cfd2d88cb65bbadec15fc5aa7590d26bb6f985

SHA512
5f363afd46db9ce1973e0351b04ee67435b3646be509eb0c4521697d794a3e32abe88e12abe32550cb0ec018054be2b68a16d0896e084c94f617a21e6e07604f

Download Submit
memory/2844-4-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-6-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-7-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-8-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-10-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-9-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-11-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-12-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-13-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-15-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-14-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-16-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-17-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-18-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-20-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-19-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-21-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-22-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-23-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-24-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-25-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-26-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-27-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-28-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-30-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-29-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-31-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-32-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-34-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-33-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-35-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-36-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-37-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-38-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-41-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-43-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-40-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-39-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-42-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-44-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-46-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-47-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-45-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-48-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-49-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-51-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-52-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-50-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-53-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-54-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-55-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-56-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-57-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-58-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-59-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-60-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-62-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-61-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-64-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-66-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-63-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-65-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download
memory/2844-67-0x00000204F7020000-0x00000204F7076000-memory.dmp

Filesize
344KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads