218b126a4a156a49a4e08f964303e8126b57c569873f1fe860f10b6d42f5571c

Analysis

max time kernel
148s
max time network
149s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
19/04/2024, 16:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Size

32KB
MD5

73f21442e6e2f2851b4f43469c4a3045
SHA1

878e8fd57ec84a270c0602d60b1c0b70281823f0
SHA256

d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e
SHA512

524e6907f063a76b4ce89eafda0f095543212b1af5fbf7558f67572a0346c186cb87035ccfe0b7b6615d4d42611417f1fa078c95d5ce567b05675d9d5807e1c9
SSDEEP

384:n0bUe5XB4e0X+OJ4w0Q0mS03AWTxtTUFQqzF6WObbF:sT9BudH55dRVbF

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 37 IoCs

description	pid	Process
Token: SeDebugPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: 33	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
Token: SeIncBasePriorityPrivilege	1688	d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe

C:\Users\Admin\AppData\Local\Temp\d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe
"C:\Users\Admin\AppData\Local\Temp\d5287df696839eaff465b707962ff9ca0b5235a4890dc19465e3e4afde84013e.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1688-1-0x0000000074120000-0x00000000746CB000-memory.dmp

Filesize
5.7MB

Download
memory/1688-2-0x00000000002B0000-0x00000000002F0000-memory.dmp

Filesize
256KB

Download
memory/1688-0-0x0000000074120000-0x00000000746CB000-memory.dmp

Filesize
5.7MB

Download
memory/1688-3-0x0000000074120000-0x00000000746CB000-memory.dmp

Filesize
5.7MB

Download
memory/1688-4-0x0000000074120000-0x00000000746CB000-memory.dmp

Filesize
5.7MB

Download
memory/1688-5-0x00000000002B0000-0x00000000002F0000-memory.dmp

Filesize
256KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads