Overview

overview

10

Static

static

3

c53544778d...99.exe

windows7-x64

1

c53544778d...99.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/04/2024, 16:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c53544778d1ef73e7d5f56c028b66dada6a3471022b89b082dcd02c7e7d36899.exe

  • Size

    4.5MB

  • MD5

    fe21f59fac94f2577077d9f0b0dbf4ce

  • SHA1

    49edf734945b785de8fdeb14d15ab33d64870996

  • SHA256

    c53544778d1ef73e7d5f56c028b66dada6a3471022b89b082dcd02c7e7d36899

  • SHA512

    cb4e4ea1c42c0650680013f1be97d20656550e4c7faff94fd36fb6c5d9b3eaefbcfdf4754dc51f0d9e50e68f9aaf80c5687871ee30c0e3cc45751c19c7439d80

  • SSDEEP

    49152:YaEAlgy6ty8OkepwcihoxAyX9Xkx/jFUN2/u5I7cycH:l3

Score
10/10
mimikatz

Malware Config

Signatures

  • Mimikatz

    mimikatz is an open source tool to dump credentials on Windows.

    mimikatz
  • mimikatz is an open source tool to dump credentials on Windows 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c53544778d1ef73e7d5f56c028b66dada6a3471022b89b082dcd02c7e7d36899.exe
    "C:\Users\Admin\AppData\Local\Temp\c53544778d1ef73e7d5f56c028b66dada6a3471022b89b082dcd02c7e7d36899.exe"
    1⤵
      PID:2108

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2108-0-0x0000024AE9E90000-0x0000024AE9FC5000-memory.dmp

      Filesize

      1.2MB

      Download

    • memory/2108-1-0x0000024AEB8F0000-0x0000024AEBA24000-memory.dmp

      Filesize

      1.2MB

      Download

    • memory/2108-2-0x0000024AEB8F0000-0x0000024AEBA24000-memory.dmp

      Filesize

      1.2MB

      Download

    • memory/2108-3-0x0000024AEB8F0000-0x0000024AEBA24000-memory.dmp

      Filesize

      1.2MB

      Download