Overview

overview

3

Static

static

3

Installer_2024.exe

windows7-x64

1

Installer_2024.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/03/2024, 05:29

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Installer_2024.exe

  • Size

    28.9MB

  • MD5

    760134f3f5b0ff8a9c4d240402e69692

  • SHA1

    9a5cb31ad5d982f4924c2122ba9f49700427a18d

  • SHA256

    2a873e68427b075cb9cff94860c4ac9031e7fea21068ba50e04cc3cd38bdd645

  • SHA512

    36d1a58af1af16ac016271e4036e581cf8803abf8935f59fcb7ea2aacc4ede70892a5119ffe3d40590d88b3df7143579dfbfc15e973decdd7270087bcc922be7

  • SSDEEP

    786432:wi+7e7FqkP8d84uBrX3q/G1AzofQZTib6fzfHwSN2MbSZNjt3KWAv6oQH:VjLtfQZ86fTHwSN2MbSZXKW9oQH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Installer_2024.exe
    "C:\Users\Admin\AppData\Local\Temp\Installer_2024.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:1928

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads