Overview

overview

7

Static

static

3

19e4c4f601...04.exe

windows7-x64

7

19e4c4f601...04.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    142s
  • max time network
    168s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30-12-2023 13:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19e4c4f601f1459b6755776c7aec2604.exe

  • Size

    556KB

  • MD5

    19e4c4f601f1459b6755776c7aec2604

  • SHA1

    71d8398652a891d09492db64bc1458349ba4cdbc

  • SHA256

    9460ffe580332fe64bb4f35bb63dc6a4302f3613718a04dc0986cea989160039

  • SHA512

    f3142590ecc73245295b1cf0f2b4188fa547f35adb2103efba55db8629c730727ac0beef73034950aec0e87297f7be1acfb2bcffc6b238c4386499356f527696

  • SSDEEP

    12288:KsztnZfvdeneL2iNF2iNi4QissaMJcR/V:KspZF1j1esId

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\19e4c4f601f1459b6755776c7aec2604.exe
    "C:\Users\Admin\AppData\Local\Temp\19e4c4f601f1459b6755776c7aec2604.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of AdjustPrivilegeToken
    PID:2484

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\108b7f4f-5686-4e2a-8f63-f5f2c7239d1c\ .dll
    Filesize

    141KB

    MD5

    e8641f344213ca05d8b5264b5f4e2dee

    SHA1

    96729e31f9b805800b2248fd22a4b53e226c8309

    SHA256

    85e82b9e9200e798e8f434459eacee03ed9818cc6c9a513fe083e72d48884e24

    SHA512

    3130f32c100ecb97083ad8ac4c67863e9ceed3a9b06fc464d1aeeaec389f74c8bf56f4ce04f6450fd2cc0fa861d085101c433cfa4bec3095f8ebeeb53b739109

    Download Submit

  • memory/2484-0-0x0000000000E90000-0x0000000000F20000-memory.dmp

    Filesize

    576KB

    Download

  • memory/2484-1-0x00007FFC38A30000-0x00007FFC394F1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2484-3-0x000000001BB90000-0x000000001BBA0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2484-9-0x00007FFC4E250000-0x00007FFC4E278000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2484-10-0x00007FFC37170000-0x00007FFC372BE000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/2484-12-0x00007FFC38A30000-0x00007FFC394F1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2484-13-0x00007FFC4E250000-0x00007FFC4E278000-memory.dmp

    Filesize

    160KB

    Download