Overview

overview

3

Static

static

3

b55734d891...17.exe

windows7-x64

1

b55734d891...17.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/02/2024, 03:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b55734d89184434a24d04af85019fd34dc0b054f13d8fb1a16ee977aea723217.exe

  • Size

    342KB

  • MD5

    8333a0979453a3109de58b089b1e3813

  • SHA1

    19f0fe97ef095af5ebe5d016869089832b73f160

  • SHA256

    b55734d89184434a24d04af85019fd34dc0b054f13d8fb1a16ee977aea723217

  • SHA512

    9e473246a015123d44ab61048fdc652645977fcd5a352b1d91ad080046521bddd02b3700e35b6f30e95abc067a3e0ca46e22c6d8c4e53b9fd9dba924104a0c9d

  • SSDEEP

    6144:hnJQkMDDwIyuLoiPHm/CTfKP/sB8j+V4K6QwCg9eubNnJQ:nUDMIyuLoiPGqmWDV4YwHeM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b55734d89184434a24d04af85019fd34dc0b054f13d8fb1a16ee977aea723217.exe
    "C:\Users\Admin\AppData\Local\Temp\b55734d89184434a24d04af85019fd34dc0b054f13d8fb1a16ee977aea723217.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2884-1-0x0000000074770000-0x0000000074F20000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/2884-0-0x00000000003E0000-0x000000000043C000-memory.dmp

    Filesize

    368KB

    Download

  • memory/2884-2-0x0000000004DA0000-0x0000000004DB0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2884-3-0x0000000000DE0000-0x0000000000DF0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2884-5-0x0000000004DA0000-0x0000000004DB0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2884-4-0x00000000096D0000-0x00000000096D8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2884-6-0x0000000004DA0000-0x0000000004DB0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2884-8-0x00000000095E0000-0x00000000095EE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2884-7-0x0000000009620000-0x0000000009658000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2884-9-0x000000000A580000-0x000000000A612000-memory.dmp

    Filesize

    584KB

    Download

  • memory/2884-10-0x0000000074770000-0x0000000074F20000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/2884-11-0x0000000004DA0000-0x0000000004DB0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2884-12-0x0000000004DA0000-0x0000000004DB0000-memory.dmp

    Filesize

    64KB

    Download