Overview

overview

8

Static

static

1

2fcc57c416...3f.exe

windows7-x64

8

2fcc57c416...3f.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 01:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2fcc57c416df9bd5eb1e722095c88a1ddaa4686eda9bceca19d40fa05de3943f.exe

  • Size

    458KB

  • MD5

    e89ac69b518144013f123db6893982c5

  • SHA1

    647f0148421f465660a78f5978b57761ce21f069

  • SHA256

    2fcc57c416df9bd5eb1e722095c88a1ddaa4686eda9bceca19d40fa05de3943f

  • SHA512

    12362eb3b2635e6e970f1a8bda541c55b9b27ca4d6bf29b4efed25e1ba779d9127134752dde5c6b171bc483f55951a93ea4e9496383a59ab3b3e29dd1e62da90

  • SSDEEP

    6144:SfsqLibrcy4C+y4Ccy4CZy4CbGsr420VMivacXYCQW8uT2y4dSBU:S0tICWCICfCbHr4/MuKuSdSU

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2fcc57c416df9bd5eb1e722095c88a1ddaa4686eda9bceca19d40fa05de3943f.exe
    "C:\Users\Admin\AppData\Local\Temp\2fcc57c416df9bd5eb1e722095c88a1ddaa4686eda9bceca19d40fa05de3943f.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2940-0-0x0000000074BDE000-0x0000000074BDF000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2940-1-0x0000000000320000-0x0000000000396000-memory.dmp

    Filesize

    472KB

    Download

  • memory/2940-2-0x0000000074BD0000-0x00000000752BE000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/2940-3-0x0000000074BD0000-0x00000000752BE000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/2940-5-0x0000000074BD0000-0x00000000752BE000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/2940-4-0x0000000074BD0000-0x00000000752BE000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/2940-7-0x0000000074BD0000-0x00000000752BE000-memory.dmp

    Filesize

    6.9MB

    Download