Overview

overview

3

Static

static

3

c67c5c6508...32.exe

windows7-x64

1

c67c5c6508...32.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/03/2024, 17:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c67c5c6508f0015e0f05b9367c7e2e32.exe

  • Size

    692KB

  • MD5

    c67c5c6508f0015e0f05b9367c7e2e32

  • SHA1

    d3829560d95a2b4d1b2630c681ffbc871db972f6

  • SHA256

    dd56f11be63a7c9abc5713be2e00a934d72410aea76b6d2404e2be2b6b73be14

  • SHA512

    49e28e2cef3344b3def8b9a0a6ceaeeb7f09245371ff7d4e5c41acc56fb3da80ec73c43ee60afd84790830ed1b5e1b7e8934e927cc7e9632be9276185f9c50b2

  • SSDEEP

    12288:9EDCJJDXb8qWvvMyesvleMkWzChpBTfgYvVtcgwSuLnKtTAwurwu9:9mQGbvNvjkJPKuMlXNwurwu9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 22 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c67c5c6508f0015e0f05b9367c7e2e32.exe
    "C:\Users\Admin\AppData\Local\Temp\c67c5c6508f0015e0f05b9367c7e2e32.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:4912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4912-0-0x0000000002360000-0x0000000002361000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4912-1-0x0000000000400000-0x00000000004B3000-memory.dmp

    Filesize

    716KB

    Download

  • memory/4912-3-0x0000000002360000-0x0000000002361000-memory.dmp

    Filesize

    4KB

    Download