Overview

overview

1

Static

static

1

e07feb81d9...06.exe

windows7-x64

1

e07feb81d9...06.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/03/2024, 01:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e07feb81d9b8addffd1c0a59a322e506.exe

  • Size

    995KB

  • MD5

    e07feb81d9b8addffd1c0a59a322e506

  • SHA1

    57b234f41690adeda4e7590c55f42aaeeb41b89e

  • SHA256

    13ce8d2c58efe6304900e820ad0e33ee2fd2170f9a65431250c2376978c05b88

  • SHA512

    819ee20fb195f8b70d60a415c6b09efe4f7c9e74168caee3ab5d3ccf91b1bf6ae910f4f2ee8535ec6f7bab2f8d5ed2074ff42eb732e4c87aa466c50f27b7596e

  • SSDEEP

    12288:NiIp0VrhNa3yT/BGbedt642LBuTjkjN8NEjJTJ02J2TnfymwZYe/9hO3t5GPheig:N/ErhciLBGIc4cuTojONiw9gCpeo

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e07feb81d9b8addffd1c0a59a322e506.exe
    "C:\Users\Admin\AppData\Local\Temp\e07feb81d9b8addffd1c0a59a322e506.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/264-0-0x0000000075160000-0x0000000075711000-memory.dmp

    Filesize

    5.7MB

    Download

  • memory/264-1-0x00000000010A0000-0x00000000010B0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/264-2-0x0000000075160000-0x0000000075711000-memory.dmp

    Filesize

    5.7MB

    Download

  • memory/264-7-0x00000000010A0000-0x00000000010B0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/264-9-0x0000000075160000-0x0000000075711000-memory.dmp

    Filesize

    5.7MB

    Download