9a8958de85bbcff4a2650bf6760bb8601f9a620dd940848d39e2834833015e11

Analysis

max time kernel
148s
max time network
146s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
31/12/2023, 04:07

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

278312cd80c7683d595e5f55246156ff.exe
Size

208KB
MD5

278312cd80c7683d595e5f55246156ff
SHA1

75f298d3c94a22a0f788f3623f3bee7c065d1cf5
SHA256

9a8958de85bbcff4a2650bf6760bb8601f9a620dd940848d39e2834833015e11
SHA512

b57cc280ea5b27c8e3a3ddb2461609459d966e6f519ebfe6f37341cc0c176712041252e3836fb6a2d4b0fbe1b1270d5143741c6cb9d4e137d25c74dabacb0e3e
SSDEEP

6144:LDKW1Lgbdl0TBBvjc/MxgUaMXm7w/rGwY:/h1Lk70TnvjckxDX+w/rlY

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	4456	278312cd80c7683d595e5f55246156ff.exe

C:\Users\Admin\AppData\Local\Temp\278312cd80c7683d595e5f55246156ff.exe
"C:\Users\Admin\AppData\Local\Temp\278312cd80c7683d595e5f55246156ff.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:4456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4456-1-0x0000000074DF0000-0x00000000755A0000-memory.dmp

Filesize
7.7MB

Download
memory/4456-0-0x00000000023C0000-0x00000000023E8000-memory.dmp

Filesize
160KB

Download
memory/4456-2-0x0000000004E80000-0x0000000004E90000-memory.dmp

Filesize
64KB

Download
memory/4456-3-0x0000000004E80000-0x0000000004E90000-memory.dmp

Filesize
64KB

Download
memory/4456-4-0x0000000004E80000-0x0000000004E90000-memory.dmp

Filesize
64KB

Download
memory/4456-5-0x0000000004E90000-0x0000000005434000-memory.dmp

Filesize
5.6MB

Download
memory/4456-6-0x0000000002540000-0x0000000002566000-memory.dmp

Filesize
152KB

Download
memory/4456-7-0x00000000026B0000-0x0000000002742000-memory.dmp

Filesize
584KB

Download
memory/4456-13-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-45-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-71-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-69-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-67-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-65-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-63-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-61-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-59-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-57-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-55-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-257-0x0000000004E50000-0x0000000004E5A000-memory.dmp

Filesize
40KB

Download
memory/4456-256-0x0000000004E80000-0x0000000004E90000-memory.dmp

Filesize
64KB

Download
memory/4456-53-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-51-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-49-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-47-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-43-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-41-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-39-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-37-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-35-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-33-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-31-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-29-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-27-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-25-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-23-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-21-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-19-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-17-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-15-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-11-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-9-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-8-0x0000000002540000-0x0000000002560000-memory.dmp

Filesize
128KB

Download
memory/4456-259-0x0000000074DF0000-0x00000000755A0000-memory.dmp

Filesize
7.7MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads