65082d1a97a4636a529d3a52248ec1eed728fa78c1a3b3e34986e0378b393f1c

Analysis

max time kernel
150s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
19-06-2024 16:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

65082d1a97a4636a529d3a52248ec1eed728fa78c1a3b3e34986e0378b393f1c.exe
Size

836KB
MD5

06b81c8edd7f620513a06e3a5cc11483
SHA1

af4ffbf3510bb2e86387d26a6de309736548b340
SHA256

65082d1a97a4636a529d3a52248ec1eed728fa78c1a3b3e34986e0378b393f1c
SHA512

9d80d9208d778779538cf5075b4018dc8b8d037a9d07c961ce2389580290df050929876d1adc2489f7dc5f6c1466cde7d21b9152185e88ba0601e4dd2da4aec7
SSDEEP

24576:fI0eDXhXsbQSa0t2xiewR2rpXN/L+9+dClWdD9:AVebQzxieHpXNL+jWdD

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2608	65082d1a97a4636a529d3a52248ec1eed728fa78c1a3b3e34986e0378b393f1c.exe

C:\Users\Admin\AppData\Local\Temp\65082d1a97a4636a529d3a52248ec1eed728fa78c1a3b3e34986e0378b393f1c.exe
"C:\Users\Admin\AppData\Local\Temp\65082d1a97a4636a529d3a52248ec1eed728fa78c1a3b3e34986e0378b393f1c.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2608

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2608-0-0x0000000000790000-0x0000000000868000-memory.dmp

Filesize
864KB

Download
memory/2608-1-0x00007FF94A5B3000-0x00007FF94A5B5000-memory.dmp

Filesize
8KB

Download
memory/2608-2-0x000000001B4A0000-0x000000001B5B6000-memory.dmp

Filesize
1.1MB

Download
memory/2608-38-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-36-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-34-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-32-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-30-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-26-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-18-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-16-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-10-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-4-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-3-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-57-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-67-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-65-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-63-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-61-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-59-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-55-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-53-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-51-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-49-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-48-0x00007FF94A5B0000-0x00007FF94B071000-memory.dmp

Filesize
10.8MB

Download
memory/2608-46-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-44-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-42-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-40-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-28-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-24-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-22-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-20-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-14-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-12-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-8-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-6-0x000000001B4A0000-0x000000001B5B0000-memory.dmp

Filesize
1.1MB

Download
memory/2608-2314-0x000000001B5B0000-0x000000001B64E000-memory.dmp

Filesize
632KB

Download
memory/2608-2315-0x000000001B650000-0x000000001B69C000-memory.dmp

Filesize
304KB

Download
memory/2608-2316-0x00007FF94A5B3000-0x00007FF94A5B5000-memory.dmp

Filesize
8KB

Download
memory/2608-2317-0x00007FF94A5B0000-0x00007FF94B071000-memory.dmp

Filesize
10.8MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads