Overview

overview

10

Static

static

10

samples5.zip

windows7-x64

1

samples5.zip

windows10-2004-x64

1

104b5623d8...d3.exe

windows7-x64

1

104b5623d8...d3.exe

windows10-2004-x64

1

160010289c...02.exe

windows7-x64

1

160010289c...02.exe

windows10-2004-x64

1

1a757d4aa5...6f.exe

windows7-x64

1

1a757d4aa5...6f.exe

windows10-2004-x64

1

21ff399e57...56.dll

windows7-x64

1

21ff399e57...56.dll

windows10-2004-x64

1

3c311150e2...bf.exe

windows7-x64

1

3c311150e2...bf.exe

windows10-2004-x64

1

3efe068c64...0f.exe

windows7-x64

3

3efe068c64...0f.exe

windows10-2004-x64

3

403be0442e...17.exe

windows7-x64

10

403be0442e...17.exe

windows10-2004-x64

10

49c96478e9...66.exe

windows7-x64

6

49c96478e9...66.exe

windows10-2004-x64

6

5154914351...a7.exe

windows7-x64

1

5154914351...a7.exe

windows10-2004-x64

1

616ea8ac34...858437

windows7-x64

1

616ea8ac34...858437

windows10-2004-x64

1

6a637e90e0...bc.exe

windows7-x64

10

6a637e90e0...bc.exe

windows10-2004-x64

9

759c06eedc...4c.dll

windows7-x64

10

759c06eedc...4c.dll

windows10-2004-x64

10

85cad059cc...20.exe

windows7-x64

1

85cad059cc...20.exe

windows10-2004-x64

1

8ca6b7929e...3c.exe

windows7-x64

10

8ca6b7929e...3c.exe

windows10-2004-x64

9

90ef3f841b...77.exe

windows7-x64

9

90ef3f841b...77.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    150s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01-01-2024 15:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5154914351d1abdc308c8a76474a19560a4624194feb98118d0710efb6804aa7.exe

  • Size

    15KB

  • MD5

    cd2ed5f84359389bf98749f49881975f

  • SHA1

    45ccaa58ac662408b7679f143042c03dc4c648c1

  • SHA256

    5154914351d1abdc308c8a76474a19560a4624194feb98118d0710efb6804aa7

  • SHA512

    692f4a48a3fad65aaaea3ba55a450aa47d65ee0ff0816ab50a61a147be9c4f7ce7df790209a0bd48d23746015a79ecbc683946565bc461c7303a1858b20e29c8

  • SSDEEP

    384:q3+NoNJcVEFxYWS9FXEvPIrUgWb3xw71dmve/hCMLXSn8/WrfI:qoVEFxYWS9FXEvKexed7jfWc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5154914351d1abdc308c8a76474a19560a4624194feb98118d0710efb6804aa7.exe
    "C:\Users\Admin\AppData\Local\Temp\5154914351d1abdc308c8a76474a19560a4624194feb98118d0710efb6804aa7.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2992

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2992-0-0x0000000000FC0000-0x0000000000FCA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2992-1-0x000007FEF5540000-0x000007FEF5F2C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2992-2-0x0000000000EE0000-0x0000000000F60000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2992-36-0x0000000000EE0000-0x0000000000F60000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2992-37-0x000007FEF5540000-0x000007FEF5F2C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2992-38-0x0000000000EE0000-0x0000000000F60000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2992-39-0x0000000000EE0000-0x0000000000F60000-memory.dmp

    Filesize

    512KB

    Download