Overview

overview

10

Static

static

10

Devil May ...er.exe

windows7-x64

1

Devil May ...er.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    34s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    16/01/2024, 20:12 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Devil May Cry 5 v1.0-v20201215 Plus 25 Trainer.exe

  • Size

    1.3MB

  • MD5

    2f622bf3e9fc00c5e41aad02a00c01d8

  • SHA1

    3e00da2df8b17505d1eb478b66c3b52cf808260e

  • SHA256

    b927d8aaabbd38abe94056122cdcd333599eefae956edfc4e6aa288a5fa1864f

  • SHA512

    19bcadbbfeb6b97c660d2f1577330c02135adcd6edf03eecb19145776aea57d533cf95dcd08a5bd0c96265db1594d3c11409b4e25f3df787f362f00b4aeb37bc

  • SSDEEP

    24576:Q7wBmfCM22oJDpaXvHafRUj0YdXYdpxwbJ7RDS:70fCaUDp2iR6RY9wV7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Devil May Cry 5 v1.0-v20201215 Plus 25 Trainer.exe
    "C:\Users\Admin\AppData\Local\Temp\Devil May Cry 5 v1.0-v20201215 Plus 25 Trainer.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of WriteProcessMemory
    PID:2300
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 2300 -s 844
      2⤵
        PID:2824

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2300-0-0x00000000003C0000-0x00000000003F2000-memory.dmp

      Filesize

      200KB

      Download

    • memory/2300-1-0x000007FEF5B00000-0x000007FEF64EC000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/2300-2-0x000000001ADA0000-0x000000001AE20000-memory.dmp

      Filesize

      512KB

      Download

    • memory/2300-3-0x000000001ADA0000-0x000000001AE20000-memory.dmp

      Filesize

      512KB

      Download

    • memory/2300-4-0x000000001ADA0000-0x000000001AE20000-memory.dmp

      Filesize

      512KB

      Download

    • memory/2300-5-0x000000001ADA0000-0x000000001AE20000-memory.dmp

      Filesize

      512KB

      Download

    • memory/2300-9-0x000000001ADA0000-0x000000001AE20000-memory.dmp

      Filesize

      512KB

      Download

    • memory/2300-10-0x000007FEF5B00000-0x000007FEF64EC000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/2300-11-0x000000001ADA0000-0x000000001AE20000-memory.dmp

      Filesize

      512KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.