Analysis

  • max time kernel
    146s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    18-06-2024 15:38

General

  • Target

    22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe

  • Size

    369KB

  • MD5

    b14219b407f8e7157630be68efb1a2f9

  • SHA1

    ecf28b415ba7268a4833199ecbe1709c0865fbc4

  • SHA256

    22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38

  • SHA512

    4b0fb8f2800b8a70e116725e4fa37444799e0f3b03938a4610f1595ab0cb1bc35d494515bf73cc07c03d4843cbdccd86006e36ba34325cf6b49057e46662cd75

  • SSDEEP

    384:eOznT8nqqXWud5oApXzn06CjFN8P3YsU6fCWYA8S/hs/EasofOh/Q0RbnqMGt/Ev:JznTEqqXWusgjdM8sSct9ApqNSb

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe
    "C:\Users\Admin\AppData\Local\Temp\22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2284-0-0x00000000742DE000-0x00000000742DF000-memory.dmp

    Filesize

    4KB

  • memory/2284-1-0x0000000000A10000-0x0000000000A72000-memory.dmp

    Filesize

    392KB

  • memory/2284-2-0x00000000742D0000-0x00000000749BE000-memory.dmp

    Filesize

    6.9MB

  • memory/2284-3-0x00000000742D0000-0x00000000749BE000-memory.dmp

    Filesize

    6.9MB