6c9ba261180946f84aacc44fd134d8faee4c7ed26dbf8d36de5d3bf31d81e199

Analysis

max time kernel
117s
max time network
121s
platform
windows7_x64
resource
win7-20231020-en
resource tags

arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
submitted
21-11-2023 10:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6c9ba261180946f84aacc44fd134d8faee4c7ed26dbf8d36de5d3bf31d81e199.exe
Size

5.9MB
MD5

aacb2a9f526d91e212385e055a7a99ed
SHA1

f61e42f73d2fb0bc61b32b9b09077d1036e23149
SHA256

6c9ba261180946f84aacc44fd134d8faee4c7ed26dbf8d36de5d3bf31d81e199
SHA512

b239c7ffd3310130d86bba513c89a8b600f4fed4b2ae9b39c7ac07a578d7519400aecababdd115567b3b146c50197bc18b7886936df6cd5065fe3e6470b0c56c
SSDEEP

98304:ZRFVAZpn+8vcAAe5YPQh/WBzIh3KhFbn7+Z6USz5Hni5kRrrEPNCpP5Oo59Y:ZRF2rcg5QzscS+z5Hn0ko+Om9

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2656	6c9ba261180946f84aacc44fd134d8faee4c7ed26dbf8d36de5d3bf31d81e199.exe

C:\Users\Admin\AppData\Local\Temp\6c9ba261180946f84aacc44fd134d8faee4c7ed26dbf8d36de5d3bf31d81e199.exe
"C:\Users\Admin\AppData\Local\Temp\6c9ba261180946f84aacc44fd134d8faee4c7ed26dbf8d36de5d3bf31d81e199.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2656-1-0x0000000074B80000-0x000000007526E000-memory.dmp

Filesize
6.9MB

Download
memory/2656-0-0x0000000004D80000-0x0000000004E97000-memory.dmp

Filesize
1.1MB

Download
memory/2656-2-0x0000000004D80000-0x0000000004E97000-memory.dmp

Filesize
1.1MB

Download
memory/2656-3-0x0000000004D80000-0x0000000004E97000-memory.dmp

Filesize
1.1MB

Download
memory/2656-4-0x0000000000A70000-0x0000000000A71000-memory.dmp

Filesize
4KB

Download
memory/2656-15-0x0000000010000000-0x0000000010005000-memory.dmp

Filesize
20KB

Download
memory/2656-13-0x0000000010000000-0x0000000010005000-memory.dmp

Filesize
20KB

Download
memory/2656-18-0x0000000010000000-0x0000000010005000-memory.dmp

Filesize
20KB

Download
memory/2656-20-0x0000000007210000-0x0000000007211000-memory.dmp

Filesize
4KB

Download
memory/2656-23-0x0000000010000000-0x0000000010005000-memory.dmp

Filesize
20KB

Download
memory/2656-24-0x00000000070C0000-0x00000000070C1000-memory.dmp

Filesize
4KB

Download
memory/2656-26-0x0000000007180000-0x0000000007181000-memory.dmp

Filesize
4KB

Download
memory/2656-29-0x0000000010000000-0x0000000010005000-memory.dmp

Filesize
20KB

Download
memory/2656-30-0x00000000071E0000-0x00000000071E1000-memory.dmp

Filesize
4KB

Download
memory/2656-32-0x0000000000C30000-0x0000000000C31000-memory.dmp

Filesize
4KB

Download
memory/2656-34-0x0000000007160000-0x0000000007161000-memory.dmp

Filesize
4KB

Download
memory/2656-28-0x0000000007190000-0x0000000007191000-memory.dmp

Filesize
4KB

Download
memory/2656-38-0x0000000077D90000-0x0000000077D91000-memory.dmp

Filesize
4KB

Download
memory/2656-37-0x0000000007120000-0x0000000007121000-memory.dmp

Filesize
4KB

Download
memory/2656-36-0x0000000007170000-0x0000000007171000-memory.dmp

Filesize
4KB

Download
memory/2656-22-0x0000000000CE0000-0x0000000000CE1000-memory.dmp

Filesize
4KB

Download
memory/2656-40-0x0000000004D40000-0x0000000004D80000-memory.dmp

Filesize
256KB

Download
memory/2656-39-0x0000000007140000-0x0000000007141000-memory.dmp

Filesize
4KB

Download
memory/2656-41-0x00000000071F0000-0x00000000071F1000-memory.dmp

Filesize
4KB

Download
memory/2656-42-0x0000000007C20000-0x0000000007E30000-memory.dmp

Filesize
2.1MB

Download
memory/2656-43-0x0000000007150000-0x0000000007151000-memory.dmp

Filesize
4KB

Download
memory/2656-44-0x0000000004D20000-0x0000000004D21000-memory.dmp

Filesize
4KB

Download
memory/2656-47-0x0000000007C20000-0x0000000007E30000-memory.dmp

Filesize
2.1MB

Download
memory/2656-46-0x0000000004D30000-0x0000000004D31000-memory.dmp

Filesize
4KB

Download
memory/2656-48-0x00000000070F0000-0x00000000070F1000-memory.dmp

Filesize
4KB

Download
memory/2656-50-0x00000000070E0000-0x00000000070E1000-memory.dmp

Filesize
4KB

Download
memory/2656-53-0x0000000074B80000-0x000000007526E000-memory.dmp

Filesize
6.9MB

Download
memory/2656-56-0x0000000007C20000-0x0000000007E30000-memory.dmp

Filesize
2.1MB

Download
memory/2656-63-0x00000000071A0000-0x00000000071A1000-memory.dmp

Filesize
4KB

Download
memory/2656-64-0x0000000004D80000-0x0000000004E97000-memory.dmp

Filesize
1.1MB

Download
memory/2656-65-0x00000000071B0000-0x00000000071B1000-memory.dmp

Filesize
4KB

Download
memory/2656-66-0x0000000008890000-0x000000000889A000-memory.dmp

Filesize
40KB

Download
memory/2656-74-0x0000000008890000-0x000000000889A000-memory.dmp

Filesize
40KB

Download
memory/2656-71-0x0000000008890000-0x000000000889A000-memory.dmp

Filesize
40KB

Download
memory/2656-68-0x0000000008890000-0x000000000889A000-memory.dmp

Filesize
40KB

Download
memory/2656-81-0x00000000744E0000-0x0000000074560000-memory.dmp

Filesize
512KB

Download
memory/2656-86-0x00000000088A0000-0x00000000088AA000-memory.dmp

Filesize
40KB

Download
memory/2656-85-0x00000000088A0000-0x00000000088AA000-memory.dmp

Filesize
40KB

Download
memory/2656-84-0x00000000088A0000-0x00000000088AA000-memory.dmp

Filesize
40KB

Download
memory/2656-87-0x00000000088A0000-0x00000000088AA000-memory.dmp

Filesize
40KB

Download
memory/2656-83-0x00000000088A0000-0x00000000088AA000-memory.dmp

Filesize
40KB

Download
memory/2656-88-0x0000000004D40000-0x0000000004D80000-memory.dmp

Filesize
256KB

Download
memory/2656-95-0x0000000009570000-0x0000000009592000-memory.dmp

Filesize
136KB

Download
memory/2656-98-0x0000000004D40000-0x0000000004D80000-memory.dmp

Filesize
256KB

Download
memory/2656-99-0x0000000004D40000-0x0000000004D80000-memory.dmp

Filesize
256KB

Download
memory/2656-108-0x0000000009900000-0x0000000009A00000-memory.dmp

Filesize
1024KB

Download
memory/2656-109-0x0000000004D40000-0x0000000004D80000-memory.dmp

Filesize
256KB

Download
memory/2656-110-0x0000000004D40000-0x0000000004D80000-memory.dmp

Filesize
256KB

Download
memory/2656-111-0x0000000007130000-0x0000000007131000-memory.dmp

Filesize
4KB

Download
memory/2656-123-0x0000000074B80000-0x000000007526E000-memory.dmp

Filesize
6.9MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads