Analysis
-
max time kernel
150s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
-
submitted
17-03-2024 03:34
General
-
Target
Dying Light 2 Stay Human v1.0.3-v1.15.2 Plus 30 Trainer.exe
-
Size
1.7MB
-
MD5
bb90d8afd816633dcc49baeeb7597d50
-
SHA1
4c9dfe529eec3ad4c184b91aef75f9bbc92a866d
-
SHA256
1b7092a6cd5712c0bb28d7e68a7fe546cffab3e9ba3c3117adf4a837b507f818
-
SHA512
d6d320f5b436e1ec5a2c5c8e753bfce2c6e6fb8757051e32cb4fa1499e388b61b5abf54a043c391a5368aa5fa7860877179392ae7d2baf49d725af8eed7e4cd3
-
SSDEEP
24576:3JqSrepDqj4yJYHn7H2MuWEd61rfz7knHDz1SnbKFzDSVXT5Xx/Rya:3zrcqMyJYL2/lCfzEH3gbhXT5Xx51
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\Dying Light 2 Stay Human v1.0.3-v1.15.2 Plus 30 Trainer.exe"C:\Users\Admin\AppData\Local\Temp\Dying Light 2 Stay Human v1.0.3-v1.15.2 Plus 30 Trainer.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/4412-0-0x0000012C781A0000-0x0000012C781D4000-memory.dmpFilesize
208KB
-
memory/4412-1-0x00007FFD292A0000-0x00007FFD29D61000-memory.dmpFilesize
10.8MB
-
memory/4412-2-0x0000012C78210000-0x0000012C78220000-memory.dmpFilesize
64KB
-
memory/4412-3-0x0000012C78210000-0x0000012C78220000-memory.dmpFilesize
64KB
-
memory/4412-4-0x0000012C7A710000-0x0000012C7A718000-memory.dmpFilesize
32KB
-
memory/4412-6-0x0000012C7A720000-0x0000012C7A72E000-memory.dmpFilesize
56KB
-
memory/4412-5-0x0000012C7A760000-0x0000012C7A798000-memory.dmpFilesize
224KB
-
memory/4412-21-0x00007FFD292A0000-0x00007FFD29D61000-memory.dmpFilesize
10.8MB
-
memory/4412-22-0x0000012C78210000-0x0000012C78220000-memory.dmpFilesize
64KB