Overview

overview

3

Static

static

3

2024-06-03...rd.exe

windows7-x64

1

2024-06-03...rd.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/06/2024, 21:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-06-03_9e7710d0cf8d0a08e0d9d1557169063c_megazord.exe

  • Size

    19.2MB

  • MD5

    9e7710d0cf8d0a08e0d9d1557169063c

  • SHA1

    bb3d83f48e74e007b0f18b7ffd21ca9738c644e7

  • SHA256

    4b6e625ffe0316b1289f711690b5cc4728fda5d9fe84a7396bae9decd7af60b4

  • SHA512

    2297005dabbe8a7889b923bdcb306a58260dfc04fd2447fedddd3d3f9e26c4e89ccc888091c20b83d3fcc36896c0f93f16ab6fa88f0f18df20238159ef7e40a8

  • SSDEEP

    393216:vV+ZQsJzTLpHlS5TQhSVquSW8LnIFG8eK2FeAzJbj9:wCuzTLJls8hSkuSrLnCG8eK2EAzJbx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-06-03_9e7710d0cf8d0a08e0d9d1557169063c_megazord.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-06-03_9e7710d0cf8d0a08e0d9d1557169063c_megazord.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads