Analysis

  • max time kernel
    1471s
  • max time network
    1504s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240508-en
  • resource tags

    arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    23-05-2024 00:17

General

  • Target

    rrrr/STRESS TEST/ThrottleStop_9.6/ThrottleStop.exe

  • Size

    3.8MB

  • MD5

    bc9be951bbed1229cab7ecbb77885cb5

  • SHA1

    a777a87ab40e5adfac7048aaccbcffea0cc0a555

  • SHA256

    77dceddd336cb2a00289159525b834de16a3c006fd9dcd991b232d2b10346997

  • SHA512

    ce8c7de8e137b7b04effb83066c408087768ab176349061b99330791f20858674ae90c76583ff1f4add8db89dc25ea416efc1677de56e16a85818439180be2e8

  • SSDEEP

    98304:ZC4lhpdW/ZmB2FbUe7F5s8dQWZ7juZoFxrI99WN7e:ZCYrgIODuWFxrI9Wq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious behavior: LoadsDriver 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\rrrr\STRESS TEST\ThrottleStop_9.6\ThrottleStop.exe
    "C:\Users\Admin\AppData\Local\Temp\rrrr\STRESS TEST\ThrottleStop_9.6\ThrottleStop.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\ThrottleStop.sys

    Filesize

    49KB

    MD5

    6bc8e3505d9f51368ddf323acb6abc49

    SHA1

    82ed942a52cdcf120a8919730e00ba37619661a3

    SHA256

    16f83f056177c4ec24c7e99d01ca9d9d6713bd0497eeedb777a3ffefa99c97f0

    SHA512

    c547ca802b74b93c455cdec1fe184e1d64184cddb9681b920120bc63b6c4285137e892910c9f069d35eea61c8da5b5672bbf72ea88df352d4d84e3d4094b7924