Overview

overview

10

Static

static

3

Setup.exe

windows10-1703-x64

10

Setup.exe

windows7-x64

1

Setup.exe

windows10-2004-x64

1

Setup.exe

windows11-21h2-x64

1

Analysis

  • max time kernel
    46s
  • max time network
    60s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240419-en
  • resource tags

    arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    14-06-2024 18:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Setup.exe

  • Size

    12KB

  • MD5

    a14e63d27e1ac1df185fa062103aa9aa

  • SHA1

    2b64c35e4eff4a43ab6928979b6093b95f9fd714

  • SHA256

    dda39f19837168845de33959de34bcfb7ee7f3a29ae55c9fa7f4cb12cb27f453

  • SHA512

    10418efcce2970dcdbef1950464c4001753fccb436f4e8ba5f08f0d4d5c9b4a22a48f2803e59421b720393d84cfabd338497c0bc77cdd4548990930b9c350082

  • SSDEEP

    192:brl2reIazGejA7HhdSbw/z1ULU87glpK/b26J4S1Xu85:b52r+xjALhMWULU870gJJ

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Setup.exe
    "C:\Users\Admin\AppData\Local\Temp\Setup.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2440

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2440-0-0x00007FF8A3873000-0x00007FF8A3875000-memory.dmp
    Filesize

    8KB

    Download
  • memory/2440-1-0x0000019D77390000-0x0000019D7739A000-memory.dmp
    Filesize

    40KB

    Download
  • memory/2440-2-0x00007FF8A3870000-0x00007FF8A4332000-memory.dmp
    Filesize

    10.8MB

    Download
  • memory/2440-4-0x00007FF8A3870000-0x00007FF8A4332000-memory.dmp
    Filesize

    10.8MB

    Download