Overview

overview

8

Static

static

3

salinewin....01.exe

windows7-x64

1

salinewin-...ty.exe

windows7-x64

1

salinewin/...te.bat

windows7-x64

1

salinewin/...DL.dll

windows7-x64

1

salinewin/...-4.dll

windows7-x64

3

salinewin/...mu.exe

windows7-x64

1

salinewin/...ss.exe

windows7-x64

1

salinewin/...sm.exe

windows7-x64

1

salinewin/...in.exe

windows7-x64

7

salinewin/...bin.py

windows7-x64

3

salinewin/...in.exe

windows7-x64

8

salinewin-safety.exe

windows7-x64

1

salinewin.exe

windows7-x64

8

Analysis

  • max time kernel
    48s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 10:05

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    salinewin.exe-Malware-main/old/salinewin 0.01.exe

  • Size

    76KB

  • MD5

    a2ff7fc5a6027b5437be56fcb3ba418f

  • SHA1

    85f3d2ec1d5b22958ca89651216cf7100a2a722f

  • SHA256

    f7dd7904f0aa943ea273dc91e91840a8c27fcccb699fee98801460c17817be5a

  • SHA512

    96f9a13b215ecb54b3759279d28a0b26217987ae5d1ef7a72d77c4afa28d336f83fc526195b8bcf57cab92942a9e30fc3812705e53c7b12a3cee14fca3a80562

  • SSDEEP

    1536:LHow1xvh8hUelTfjfutQ40Dv4yaLJ5inhzxDhjLYJAIsWk6cdG2357Rh:L+h9lTfj7lDv4/Pintxlo2Goxj

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\salinewin.exe-Malware-main\old\salinewin 0.01.exe
    "C:\Users\Admin\AppData\Local\Temp\salinewin.exe-Malware-main\old\salinewin 0.01.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2360

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads