Overview

overview

3

Static

static

3

47dc27518b...0b.exe

windows7-x64

1

47dc27518b...0b.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07-01-2024 03:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    47dc27518bef60aea2a67b9bdbed7e0b.exe

  • Size

    67KB

  • MD5

    47dc27518bef60aea2a67b9bdbed7e0b

  • SHA1

    f79239bd40cd4c8821c283d29d042f4c486054b3

  • SHA256

    a81da6a0d98b3236f8aff0ee2a1e25d02e27d9f47141dd12329f95aa85469230

  • SHA512

    84b9bfb234490167bf9ab60b7b4c159f01337c1722d4ae110d54a4681e2ac99165a6609ee1e7b3291875865ddc14f3173cda8ffd2e30a141a085e3f8e9a0be29

  • SSDEEP

    1536:sciqUw2KCTwF/XcAieRnQJpRaLPaaAu9KX1N:Uq2KcTeZspRaLPnK3

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\47dc27518bef60aea2a67b9bdbed7e0b.exe
    "C:\Users\Admin\AppData\Local\Temp\47dc27518bef60aea2a67b9bdbed7e0b.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1896-0-0x0000000000E00000-0x0000000000E1A000-memory.dmp

    Filesize

    104KB

    Download

  • memory/1896-1-0x00000000749E0000-0x00000000750CE000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1896-2-0x0000000004920000-0x0000000004960000-memory.dmp

    Filesize

    256KB

    Download

  • memory/1896-3-0x0000000004920000-0x0000000004960000-memory.dmp

    Filesize

    256KB

    Download

  • memory/1896-4-0x00000000749E0000-0x00000000750CE000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1896-5-0x0000000004920000-0x0000000004960000-memory.dmp

    Filesize

    256KB

    Download