Overview

overview

3

Static

static

3

58791551e0...d2.exe

windows7-x64

1

58791551e0...d2.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    102s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20/05/2024, 22:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    58791551e0363055c17eaee4f6df90e03d35852bfde09ecd09224834e40c46d2.exe

  • Size

    13KB

  • MD5

    9a63b20fd82234bdc8e293eb0b5c5edb

  • SHA1

    004902405a3c9b1d0dadd34f8746be3187b6a99c

  • SHA256

    58791551e0363055c17eaee4f6df90e03d35852bfde09ecd09224834e40c46d2

  • SHA512

    14e4811c02b1bfc8431ee24b242c96ad11b5f99bf3263d2f267753b8d55f1b2d0440e9958834768c7509da1d14539d98670e1bd21cbef3aec92eac50170875ae

  • SSDEEP

    192:100txo7TawvOv4YcI+kf02/SaOjtZ65bukWjdJc8AUE3QvHzL91aRZEsL4b9m4DO:GycidyQbcZ4QvTp1asb9m4ybVBu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 29 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\58791551e0363055c17eaee4f6df90e03d35852bfde09ecd09224834e40c46d2.exe
    "C:\Users\Admin\AppData\Local\Temp\58791551e0363055c17eaee4f6df90e03d35852bfde09ecd09224834e40c46d2.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:1084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1084-0-0x00000000750EE000-0x00000000750EF000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1084-1-0x00000000008D0000-0x00000000008DA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/1084-2-0x0000000005880000-0x0000000005E24000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/1084-3-0x00000000052D0000-0x0000000005362000-memory.dmp

    Filesize

    584KB

    Download

  • memory/1084-4-0x0000000005380000-0x000000000538A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/1084-5-0x00000000750E0000-0x0000000075890000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/1084-6-0x00000000750E0000-0x0000000075890000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/1084-7-0x00000000750EE000-0x00000000750EF000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1084-8-0x00000000750E0000-0x0000000075890000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/1084-9-0x00000000750E0000-0x0000000075890000-memory.dmp

    Filesize

    7.7MB

    Download