Overview

overview

7

Static

static

3

0085e5f678...52.exe

windows7-x64

7

0085e5f678...52.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    48s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/12/2023, 18:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0085e5f6785380f95eebbac8d3a12752.exe

  • Size

    1.8MB

  • MD5

    0085e5f6785380f95eebbac8d3a12752

  • SHA1

    1bae96894fa2c8c8c254833472edcbed478f07e3

  • SHA256

    e0fd823659000f46f7e54f839629144be462919a31a5e258f13b2b79731aa6cf

  • SHA512

    d834e50b17acb2d1012991c1721e9a3b5eb5e7491cc1a387d22392e836072995f12b67688a3b084199f92734f4fe5566fe35ef329f0f4c655e335c1adbc9feeb

  • SSDEEP

    49152:QcoypeOo2hCyW2aEIknrpJwjiadPBO1Q7fKvgRoML:Q5WEge2aE7nnadU1mDR9L

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 4 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0085e5f6785380f95eebbac8d3a12752.exe
    "C:\Users\Admin\AppData\Local\Temp\0085e5f6785380f95eebbac8d3a12752.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:1200

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1200-0-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-1-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-2-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-3-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-5-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-6-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-7-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-8-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-9-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-10-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-11-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-12-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-13-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-14-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download

        • memory/1200-15-0x0000000000400000-0x000000000071B000-memory.dmp

          Filesize

          3.1MB

          Download