Overview

overview

3

Static

static

3

e900c61e68...5e.exe

windows7-x64

1

e900c61e68...5e.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/02/2024, 01:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e900c61e684e6b8bfedc0ec2eaf24e1cc713beb72c527571096268956f141e5e.exe

  • Size

    3.1MB

  • MD5

    f293074ff58c157de6c77b85fa878bf4

  • SHA1

    3816e8c9d4f2751f9f605e055d44c06d29d7cd0c

  • SHA256

    e900c61e684e6b8bfedc0ec2eaf24e1cc713beb72c527571096268956f141e5e

  • SHA512

    9f7f2c1b406260dc8b8ea71e983b7c0429f783878c677beece6c23c32b28ab3141ca296612979a46e1a323c8139263141ebe1fb2fa9ec2fc59224ba27f8da67e

  • SSDEEP

    49152:Tfv/XRm3fUHv648igad1UUi9Gi2G+KX59T53/A1Nc3Wad:TH/b6YgafUT2GhpP/CO

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e900c61e684e6b8bfedc0ec2eaf24e1cc713beb72c527571096268956f141e5e.exe
    "C:\Users\Admin\AppData\Local\Temp\e900c61e684e6b8bfedc0ec2eaf24e1cc713beb72c527571096268956f141e5e.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/700-2-0x0000000002E60000-0x0000000002F60000-memory.dmp

    Filesize

    1024KB

    Download

  • memory/700-3-0x0000000002E60000-0x0000000002F60000-memory.dmp

    Filesize

    1024KB

    Download