Overview

overview

3

Static

static

3

4119a5e9ce...51.exe

windows7-x64

1

4119a5e9ce...51.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 22:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4119a5e9ce2d40270f04e5f71a95aa51.exe

  • Size

    769KB

  • MD5

    4119a5e9ce2d40270f04e5f71a95aa51

  • SHA1

    48d8b8a28955b7fb5d7b58d1ed63e61b2e137b6f

  • SHA256

    8d8c2c23bd635fba4c8e279d6e2272d0b3c74a976113e71c9bf483970edaf8c4

  • SHA512

    5d3f2161583f5a3221d67d38a4d9e0f0cd40042d08c3c1f1a8f41c349fbb3f752a1627ce65b658da7090ae6b91b364a9f37e0f9c6e1a3b3075b5fdfaffd805d3

  • SSDEEP

    12288:gTtkAiWUnYFIuUWq1dXWWPE+F8tH7Szv9J0DiKrAXBmqAdQEKVsXx3cywspuM92:gTTr1MxBib2

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4119a5e9ce2d40270f04e5f71a95aa51.exe
    "C:\Users\Admin\AppData\Local\Temp\4119a5e9ce2d40270f04e5f71a95aa51.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
    Filesize

    2B

    MD5

    f3b25701fe362ec84616a93a45ce9998

    SHA1

    d62636d8caec13f04e28442a0a6fa1afeb024bbb

    SHA256

    b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209

    SHA512

    98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

    Download Submit

  • memory/2396-29-0x000000000A010000-0x000000000A048000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2396-2-0x0000000005220000-0x0000000005230000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2396-3-0x0000000005C40000-0x0000000005C4A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2396-1-0x00000000007B0000-0x0000000000876000-memory.dmp

    Filesize

    792KB

    Download

  • memory/2396-28-0x0000000006C60000-0x0000000006C68000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2396-0-0x0000000074EB0000-0x0000000075660000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/2396-30-0x0000000009FD0000-0x0000000009FDE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2396-31-0x0000000074EB0000-0x0000000075660000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/2396-32-0x0000000005220000-0x0000000005230000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2396-33-0x0000000005220000-0x0000000005230000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2396-34-0x000000000A910000-0x000000000A918000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2396-35-0x0000000005220000-0x0000000005230000-memory.dmp

    Filesize

    64KB

    Download