Overview

overview

3

Static

static

3

3fe406d5fb...91.exe

windows7-x64

1

3fe406d5fb...91.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    160s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/03/2024, 13:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3fe406d5fb96318792c6845e824413bd709c776d74b73893af33f277b9350591.exe

  • Size

    1.8MB

  • MD5

    e3cb6facc34751ef31fbc8e217fbb778

  • SHA1

    e51dffd12bc7ff067f55342ece97f67532a681ef

  • SHA256

    3fe406d5fb96318792c6845e824413bd709c776d74b73893af33f277b9350591

  • SHA512

    0fdeafba6bd819bf38d601f696631a3da0b23ea0dc5fe105215e8f1b830764de6a3305781430e1dcb47d8f9891437e041b60ee0c4af8c3e79375113a8afa5c06

  • SSDEEP

    24576:iR5QvG4V6SzMpZsVafX4OSwqgVls6eKWPyEa4r5nDtIq3DlhXGgO+56VsFEPQIoG:iR5/4lzMpZRX47gVlkPR/Cq3D3GgOMj

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3fe406d5fb96318792c6845e824413bd709c776d74b73893af33f277b9350591.exe
    "C:\Users\Admin\AppData\Local\Temp\3fe406d5fb96318792c6845e824413bd709c776d74b73893af33f277b9350591.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2488

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2488-0-0x000002997E8C0000-0x000002997EA90000-memory.dmp

          Filesize

          1.8MB

          Download

        • memory/2488-1-0x00007FFCF2250000-0x00007FFCF2D11000-memory.dmp

          Filesize

          10.8MB

          Download

        • memory/2488-2-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-3-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-4-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-5-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-6-0x00007FFCF2250000-0x00007FFCF2D11000-memory.dmp

          Filesize

          10.8MB

          Download

        • memory/2488-7-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-8-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-9-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download

        • memory/2488-10-0x000002997EEC0000-0x000002997EED0000-memory.dmp

          Filesize

          64KB

          Download