194e630f2fd9c92859ae610c7556ca6e3d252897ed7a5b3aa664114471fa21a0

Analysis

max time kernel
150s
max time network
127s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
29-05-2024 15:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
Size

1.8MB
MD5

3bd2b7347fa78783d97e4c1370895f0c
SHA1

b8d1ed81c03faf5a57cf8ef87a267e593faebdfa
SHA256

37d62cf32275f647d2e5ffd71ce4f19a730b92769d325e9bfda7d78a23d49b63
SHA512

2cbc9a463433bbe56b2942b32201d8a9ee7ce85a25a2d352e42f622ce7295d74ab78de9f3e2529dc6f0f49f404932552bf2b2ae12d0d7350d7c8aa48586d7ab9
SSDEEP

24576:oMs+QByjaXTnVNKHOMHYmlFo5ASuv9+aPECkDtGQjnEdUaxVNDSfWB:w4aDVIHjYmlFSAS29B/kwontar

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	4256	Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe

C:\Users\Admin\AppData\Local\Temp\Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe
"C:\Users\Admin\AppData\Local\Temp\Monster Hunter World v20200109-v20200126 Plus 58 Trainer.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:4256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4256-0-0x00007FFA6A4B3000-0x00007FFA6A4B5000-memory.dmp

Filesize
8KB

Download
memory/4256-1-0x0000022955A10000-0x0000022955A42000-memory.dmp

Filesize
200KB

Download
memory/4256-2-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-3-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-6-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-7-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-9-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-10-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-11-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-19-0x00007FFA6A4B3000-0x00007FFA6A4B5000-memory.dmp

Filesize
8KB

Download
memory/4256-20-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-21-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-22-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-23-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-24-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-25-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download
memory/4256-26-0x00007FFA6A4B0000-0x00007FFA6AF71000-memory.dmp

Filesize
10.8MB

Download