7b8e6ac4d63a4d8515200807fbd3a2bd46ac77df64300e5f19508af0d54d2be6

Analysis

max time kernel
35s
max time network
19s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
25-02-2024 03:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Fantom.exe
Size

261KB
MD5

7d80230df68ccba871815d68f016c282
SHA1

e10874c6108a26ceedfc84f50881824462b5b6b6
SHA256

f4234a501edcd30d3bc15c983692c9450383b73bdd310059405c5e3a43cc730b
SHA512

64d02b3e7ed82a64aaac1f74c34d6b6e6feaac665ca9c08911b93eddcec66595687024ec576e74ea09a1193ace3923969c75de8733859835fef45335cf265540
SSDEEP

3072:vDKW1LgppLRHMY0TBfJvjcTp5XxG8pt+oSOpE22obq+NYgvPuCEbMBWJxLRiUgV:vDKW1Lgbdl0TBBvjc/M8n35nYgvKjdzi

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes:

Fantom.exe

description pid process

Token: SeDebugPrivilege 2276 Fantom.exe

description	pid	process
Token: SeDebugPrivilege	2276	Fantom.exe

C:\Users\Admin\AppData\Local\Temp\Fantom.exe
"C:\Users\Admin\AppData\Local\Temp\Fantom.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2276

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2276-0-0x0000000001FD0000-0x0000000002002000-memory.dmp

Filesize
200KB

Download
memory/2276-1-0x00000000740B0000-0x000000007479E000-memory.dmp

Filesize
6.9MB

Download
memory/2276-2-0x00000000049B0000-0x00000000049F0000-memory.dmp

Filesize
256KB

Download
memory/2276-3-0x00000000049B0000-0x00000000049F0000-memory.dmp

Filesize
256KB

Download
memory/2276-4-0x0000000002120000-0x0000000002152000-memory.dmp

Filesize
200KB

Download
memory/2276-6-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-8-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-5-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-12-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-10-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-16-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-14-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-20-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-18-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-24-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-22-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-28-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-26-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-30-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-32-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-34-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-38-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-36-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-44-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-42-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-40-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-48-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-46-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-52-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-50-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-54-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-56-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-58-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-62-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-60-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-64-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-66-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-68-0x0000000002120000-0x000000000214B000-memory.dmp

Filesize
172KB

Download
memory/2276-129-0x00000000049B0000-0x00000000049F0000-memory.dmp

Filesize
256KB

Download
memory/2276-130-0x0000000000500000-0x0000000000501000-memory.dmp

Filesize
4KB

Download
memory/2276-131-0x00000000740B0000-0x000000007479E000-memory.dmp

Filesize
6.9MB

Download
memory/2276-132-0x00000000049B0000-0x00000000049F0000-memory.dmp

Filesize
256KB

Download
memory/2276-133-0x00000000049B0000-0x00000000049F0000-memory.dmp

Filesize
256KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads