1b557fd0e57b0fda74d855391e888b4fcbeaec6eb6caff2bd1c62f1ff127c58f

Analysis

max time kernel
149s
max time network
119s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
17-06-2024 03:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
Size

1.6MB
MD5

ef0a89bf8ab03f015097fa6446c5250a
SHA1

63d0bc1f15ff296fb2a8e6698f9e089c74f43de9
SHA256

0ce4ff737f6c3a3851565c45b77a998d30a229fbfd1e812932ab67de3ec679d0
SHA512

01b6cbb55651ba72b48018b471a4d6d6ef4d8d87766a68aee1c575d21c0f8f3d132587e7159d9033e271b55937a47e66f8a1d232a70744b32332bbfe8abaaaa0
SSDEEP

24576:Xm0kpUQaF1KG6xCoPnXisZgcIDSGl03Yxo8mYL:2UQpLxCwXi+gcuuw

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2756	Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe

C:\Users\Admin\AppData\Local\Temp\Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe
"C:\Users\Admin\AppData\Local\Temp\Total War THREE KINGDOMS v1.0-v20190612 Plus 25 Trainer.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:2756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\Documents\FLiNGTrainer\TrainerSettings.ini

Filesize
111B

MD5
75963a99718114c974722f7629b18f40

SHA1
ffbf9eab162bb36cf20ee60f2cdf0e6d2e2ae30a

SHA256
35e7b1077558ced0d17eb49354aad352b592aace4b405a91a4f76d1a65e1d360

SHA512
6614d011b64e81424be81cd9bea1d8b5372c4263f55627706e922c49a120a2e7e130d422fd16643f27cc0da6bfa6f00950ff3c5578a0eb6bfb999d27d2f64b92

Download Submit