Analysis
-
max time kernel
149s -
max time network
128s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
13-05-2024 23:36
Static task
static1
Behavioral task
behavioral1
Sample
Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral2
Sample
Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
TrAntiAntiCheat_x64.sys
Resource
win10v2004-20240508-en
windows10-2004-x64
General
-
Target
Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe
-
Size
1.4MB
-
MD5
8a1cc5819fceab04489d71c221a8dc09
-
SHA1
741d5b93ab9beb67935d93f416a83b7ba04b6377
-
SHA256
3ad9b1e0e5edda276cf6d28464d363ffd9fcdf40421db3d4177c34f05b5c928e
-
SHA512
1cf2634ade8781236115fcabab3f223fd121e72f59cf956a4faf416c0152661b7bc8804f9ced82508f74b71510226fdd9b3d613b65dbf9c050f6c4f4c0bc8326
-
SSDEEP
24576:g5MyRysIlq4631ImkSPLlzDSXJkHjTtbgBbiOac8mYL:g5fUsIlql1ImkSxFpgxi9
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 2028 Faith of Danschant v1.9-v1.15 Plus 16 Trainer.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
89B
MD5348beb1303020f7b1a6e904441419fe3
SHA13c2b039e85dd032e08be7626da1630edeff18fff
SHA2569b40d323a1bf0d36fd82dbd36784602e69107073507e8960ebe6c691dbcbda82
SHA512ec12127abc419484b65ebf60eead4b3d2289ead50d6879d664bf6e053050326b199a59f216855b631bc813b0e6cddd5e9640e53e70fd9eb1301646d1bc83850e