d5a200c34505465d309415de2c0b78b3f7e15e0d07583412eca72e7685ab28c9

Analysis

max time kernel
591s
max time network
453s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
22-05-2024 08:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Jasi2169 NFO Viewer.exe
Size

152KB
MD5

19fe0a06003b2cc9c702a50824199521
SHA1

6b2005c9e4b8a9376e3ddedc276753c66485d8c1
SHA256

70e3eb2cd8520261275ba73c70f003cbecd1d4b35466ec74d9678472aca72344
SHA512

d50ab88999e60ce75a7c34a0db4c816adf89e72f2a1583e74991dceb68205d4d1e8bbefb3c501f211190118328bdc32a68fa72815c562a906dbed94b59af4fcb
SSDEEP

3072:TFcS5icufP7afBrG+OcHgFmKfs1Q0WsDL2sYnW+8ToLphLoimt8Y:RXqyB6bcHOm+s+0WsDis6XLHa8

Score

7^/10

Malware Config

Signatures

Loads dropped DLL 1 IoCs

Processes:

Jasi2169 NFO Viewer.exe

pid process

4604 Jasi2169 NFO Viewer.exe
Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes:

AUDIODG.EXE

description pid process

Token: 33 1432 AUDIODG.EXE
Token: SeIncBasePriorityPrivilege 1432 AUDIODG.EXE

pid	process
4604	Jasi2169 NFO Viewer.exe

description	pid	process
Token: 33	1432	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	1432	AUDIODG.EXE

C:\Users\Admin\AppData\Local\Temp\Jasi2169 NFO Viewer.exe
"C:\Users\Admin\AppData\Local\Temp\Jasi2169 NFO Viewer.exe"
1⤵
- Loads dropped DLL
PID:4604

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x49c 0x494
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1432

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\bassmod.dll

Filesize
33KB

MD5
e4ec57e8508c5c4040383ebe6d367928

SHA1
b22bcce36d9fdeae8ab7a7ecc0b01c8176648d06

SHA256
8ad9e47693e292f381da42ddc13724a3063040e51c26f4ca8e1f8e2f1ddd547f

SHA512
77d5cf66caf06e192e668fae2b2594e60a498e8e0ccef5b09b9710721a4cdb0c852d00c446fd32c5b5c85e739de2e73cb1f1f6044879fe7d237341bbb6f27822

Download Submit
memory/4604-0-0x0000000074E7E000-0x0000000074E7F000-memory.dmp

Filesize
4KB

Download
memory/4604-1-0x00000000009B0000-0x00000000009DC000-memory.dmp

Filesize
176KB

Download
memory/4604-2-0x0000000002D00000-0x0000000002D18000-memory.dmp

Filesize
96KB

Download
memory/4604-4-0x0000000074E70000-0x0000000075620000-memory.dmp

Filesize
7.7MB

Download
memory/4604-3-0x0000000005450000-0x00000000054EC000-memory.dmp

Filesize
624KB

Download
memory/4604-5-0x0000000005AA0000-0x0000000006044000-memory.dmp

Filesize
5.6MB

Download
memory/4604-6-0x0000000005590000-0x0000000005622000-memory.dmp

Filesize
584KB

Download
memory/4604-7-0x00000000054F0000-0x00000000054FA000-memory.dmp

Filesize
40KB

Download
memory/4604-8-0x0000000005780000-0x00000000057D6000-memory.dmp

Filesize
344KB

Download
memory/4604-9-0x00000000077E0000-0x00000000077F0000-memory.dmp

Filesize
64KB

Download
memory/4604-15-0x0000000074E70000-0x0000000075620000-memory.dmp

Filesize
7.7MB

Download
memory/4604-16-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-17-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-18-0x0000000074E7E000-0x0000000074E7F000-memory.dmp

Filesize
4KB

Download
memory/4604-19-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-20-0x0000000074E70000-0x0000000075620000-memory.dmp

Filesize
7.7MB

Download
memory/4604-21-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-22-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-23-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-24-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-25-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-26-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-27-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-28-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-29-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-30-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-31-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-32-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-33-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-34-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-35-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-36-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-37-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-38-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-39-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-40-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-41-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-42-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-43-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-44-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-45-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-46-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-47-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-48-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-49-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-50-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-51-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-52-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-53-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-54-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-55-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-56-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-57-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-58-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-59-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-60-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-61-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-62-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-63-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-64-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-65-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-66-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-67-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-68-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-69-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-70-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-71-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-72-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-73-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-74-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-75-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-76-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-77-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download
memory/4604-78-0x0000000010000000-0x0000000010013000-memory.dmp

Filesize
76KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads