Overview

overview

10

Static

static

10

8791b05c21...92.exe

windows7-x64

1

8791b05c21...92.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-12-2023 07:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8791b05c2148e563ac614459cc99e0280f6f7e56dba3bf478402531ed5e7d392.exe

  • Size

    1.3MB

  • MD5

    025c331c553287c5ac380e72ddcf2e31

  • SHA1

    80af2b5248083229e418af9acb99271b88b358c3

  • SHA256

    8791b05c2148e563ac614459cc99e0280f6f7e56dba3bf478402531ed5e7d392

  • SHA512

    a9475534b29d6843a964f21b55b72d86eec34c42d48cb02214b6d2f2da955a56393dd874da126b955b2d1fc73889cfdcedf5d996cd5943bcd1d7d0e2903e6b58

  • SSDEEP

    24576:0xfd8Ww3c9UBAt5qLlip1vlOiQbtDSVXT5XTOya:s8Ww3c9UM5T1tEuXT5XTO1

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8791b05c2148e563ac614459cc99e0280f6f7e56dba3bf478402531ed5e7d392.exe
    "C:\Users\Admin\AppData\Local\Temp\8791b05c2148e563ac614459cc99e0280f6f7e56dba3bf478402531ed5e7d392.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3188-0-0x00000255103C0000-0x00000255103F4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/3188-3-0x00000255288E0000-0x00000255288F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3188-2-0x00000255288E0000-0x00000255288F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3188-1-0x00007FFF4A0A0000-0x00007FFF4AB61000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3188-4-0x00000255288E0000-0x00000255288F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3188-5-0x000002552E370000-0x000002552E378000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3188-7-0x000002552E3C0000-0x000002552E3CE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3188-6-0x000002552E3F0000-0x000002552E428000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3188-22-0x00007FFF4A0A0000-0x00007FFF4AB61000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3188-23-0x00000255288E0000-0x00000255288F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3188-24-0x00000255288E0000-0x00000255288F0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3188-25-0x00000255288E0000-0x00000255288F0000-memory.dmp

    Filesize

    64KB

    Download