Overview

overview

3

Static

static

3

2fd54440cd...66.exe

windows7-x64

1

2fd54440cd...66.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16-11-2023 06:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2fd54440cd99ed40c8d13a00f9619966bd595e74d2d1c0fc4aea17aa6109bf66.exe

  • Size

    3.1MB

  • MD5

    a4f3c2a1dfed1f387af96125fa36e9aa

  • SHA1

    0cf0883f0ae7acac4726b809a9ecac7e609a4228

  • SHA256

    2fd54440cd99ed40c8d13a00f9619966bd595e74d2d1c0fc4aea17aa6109bf66

  • SHA512

    af0898b358e827d21c09d7b3faf8cd8a6be56fffff32eafd3a38c19b2df494a991b8deda9abb53dff73b65f502bbe38dbccedaca757a03c15743ec8f9a21dfd1

  • SSDEEP

    49152:Tfv/XRm3fUHv648igad1UUi9Gi2G+KXP9T53/A1Nc3Wad:TH/b6YgafUT2GhfP/CO

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2fd54440cd99ed40c8d13a00f9619966bd595e74d2d1c0fc4aea17aa6109bf66.exe
    "C:\Users\Admin\AppData\Local\Temp\2fd54440cd99ed40c8d13a00f9619966bd595e74d2d1c0fc4aea17aa6109bf66.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:4584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4584-8-0x00000000035F0000-0x00000000036F0000-memory.dmp

    Filesize

    1024KB

    Download

  • memory/4584-9-0x00000000035F0000-0x00000000036F0000-memory.dmp

    Filesize

    1024KB

    Download

  • memory/4584-10-0x00000000035F0000-0x00000000036F0000-memory.dmp

    Filesize

    1024KB

    Download

  • memory/4584-11-0x00000000035F0000-0x00000000036F0000-memory.dmp

    Filesize

    1024KB

    Download