Overview

overview

10

Static

static

10

868c528256...4f.exe

windows7-x64

1

868c528256...4f.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18-11-2023 01:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    868c528256713452b7f021a14dac65a031a3c9848f8375ae75e79962a4cddb4f.exe

  • Size

    1.3MB

  • MD5

    68e809f8556582cf192c2e5a49600e63

  • SHA1

    4d90b35f1ae335fdde6bf528401de5ec1def00d8

  • SHA256

    868c528256713452b7f021a14dac65a031a3c9848f8375ae75e79962a4cddb4f

  • SHA512

    bc269364ab48d77bfd0ae4cc843b6b2708bf2f19d68a936e433c0b1905d0900dd5a7614297ab50a780486fda29f2c60c4013c2c4820a86a1535358fdd51a3bf1

  • SSDEEP

    24576:tx/YwXQ1Oll53eiY7SANFgNf/tqdBr/m6IKDSVXT5XIsG1Wya:TgwXQ1Oll5OiY7SAEVgifXT5XGW1

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\868c528256713452b7f021a14dac65a031a3c9848f8375ae75e79962a4cddb4f.exe
    "C:\Users\Admin\AppData\Local\Temp\868c528256713452b7f021a14dac65a031a3c9848f8375ae75e79962a4cddb4f.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4432

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4432-0-0x000002814D160000-0x000002814D194000-memory.dmp

    Filesize

    208KB

    Download

  • memory/4432-1-0x00007FF8F5C70000-0x00007FF8F6731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4432-3-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-2-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-4-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-5-0x00007FF8F5C70000-0x00007FF8F6731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4432-6-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-7-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-8-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-9-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-10-0x000002814DA40000-0x000002814DA48000-memory.dmp

    Filesize

    32KB

    Download

  • memory/4432-11-0x000002814D810000-0x000002814D820000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4432-12-0x0000028167670000-0x00000281676A8000-memory.dmp

    Filesize

    224KB

    Download

  • memory/4432-13-0x0000028167630000-0x000002816763E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/4432-15-0x00007FF8F5C70000-0x00007FF8F6731000-memory.dmp

    Filesize

    10.8MB

    Download