Overview

overview

3

Static

static

3

2d675ad033...16.exe

windows7-x64

1

2d675ad033...16.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    167s
  • max time network
    174s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31/12/2023, 07:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2d675ad0336bab699ef48282f01f3916.exe

  • Size

    114KB

  • MD5

    2d675ad0336bab699ef48282f01f3916

  • SHA1

    8f06020049a9f2d0da02d63431fd5c26b70937f2

  • SHA256

    8e6fa39465d97739c3f12c1dc41d3ca8089f3de0730f32520e734fbebe77b0e9

  • SHA512

    295952abda5da89ff99232dc98888083875987abd07aca497bb72c43a06da81a22f26fcab9d362618643cb4abc3d817f2c6591951b7ac2aa449ff307f701b632

  • SSDEEP

    1536:9cqrQ45YhbZwTK8JzDGBktaHIrubcCw/KNMCfYH3RO20t:RF50bie8JzDGCfu+uHQXREt

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2d675ad0336bab699ef48282f01f3916.exe
    "C:\Users\Admin\AppData\Local\Temp\2d675ad0336bab699ef48282f01f3916.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2168-0-0x0000000010000000-0x0000000010025200-memory.dmp

    Filesize

    148KB

    Download

  • memory/2168-1-0x0000000010000000-0x0000000010025200-memory.dmp

    Filesize

    148KB

    Download

  • memory/2168-2-0x0000000010000000-0x0000000010025200-memory.dmp

    Filesize

    148KB

    Download

  • memory/2168-3-0x0000000010000000-0x0000000010025200-memory.dmp

    Filesize

    148KB

    Download

  • memory/2168-5-0x0000000010000000-0x0000000010025200-memory.dmp

    Filesize

    148KB

    Download

  • memory/2168-6-0x0000000010000000-0x0000000010025200-memory.dmp

    Filesize

    148KB

    Download