Overview

overview

5

Static

static

3

Adminstor.exe

windows7-x64

5

Adminstor.exe

windows10-2004-x64

1

Adminstor.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12-06-2024 16:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Adminstor.exe

  • Size

    908KB

  • MD5

    425693580891a23a46f68811460b0b4f

  • SHA1

    3d6504b5de455abf0a3c37c5b1e8382542e47e1c

  • SHA256

    1517475f26721fca696dc891b6e16d2c3b9f7f70ae0183f6915da03cf2085f68

  • SHA512

    67a2cbf64615f012616ec7e8bb24ff5e3ad111ae0029fda23d1f0bb8afed07118fc8cf84056b0f0efb9333646e0f5d7caef644eacaba8da4b48dccccdf7c296a

  • SSDEEP

    24576:lu1cnLdt/9l3XTsN25ikchmei/l9OixU18WmqIPMCLh:gS3P3jsQ5ikchcgw9WQPB

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 29 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Adminstor.exe
    "C:\Users\Admin\AppData\Local\Temp\Adminstor.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    PID:1196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1196-0-0x0000000000400000-0x0000000000522000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-1-0x0000000075E20000-0x0000000075E67000-memory.dmp

    Filesize

    284KB

    Download

  • memory/1196-506-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-504-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-503-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-524-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-538-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-510-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-516-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-514-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-512-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-508-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-522-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-564-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-562-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-560-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-558-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-556-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-555-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-552-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-550-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-548-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-546-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-544-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-542-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-540-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-536-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-534-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-532-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-530-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-528-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-526-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-520-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1196-518-0x0000000002160000-0x0000000002271000-memory.dmp

    Filesize

    1.1MB

    Download