9bfb81b2588a66a11e0eeff2e8287b7e288907e917d76e9f1b5e4f74d7bf2f19

Analysis

max time kernel
44s
max time network
42s
platform
windows11-21h2_x64
resource
win11-20240419-en
resource tags

arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system
submitted
27/06/2024, 08:29

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

Chemie Test.exe
Size

483KB
MD5

300148b26f292174f09bb8beda65e48a
SHA1

d1eccde3de88daf671be49a892203a94242f0f6a
SHA256

9bfb81b2588a66a11e0eeff2e8287b7e288907e917d76e9f1b5e4f74d7bf2f19
SHA512

87f6d6cedbc5fe52b94c78a38d034905ef7ab8097036012c506a270546a8b3a97f5c79083298761c6b97081fae5cfeaff06d7ec1426e674ca528be2afca7d921
SSDEEP

12288:tRDRryFot2wkda7Enp+N5E6vwjY3hSuFL:tvyFoBkkAneuOwjYMuFL

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	1140	Chemie Test.exe

C:\Users\Admin\AppData\Local\Temp\Chemie Test.exe
"C:\Users\Admin\AppData\Local\Temp\Chemie Test.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1140

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\Chemie Test - konfigurace.json

Filesize
28B

MD5
0feb58907dbe1ed1fdb02389ddabe692

SHA1
12afc2cfcc80985b46af3f00fe52a85fe5272e3b

SHA256
5b68ccc933fe07647a9243bd93d15b3f2c174cbe25eeaad381862932b8d5d86e

SHA512
ebe842cd6c794d73eb381288d24005d311f2cde26b0345b0b7ab6b77dfbf1a02e16c0c6d08b985e9c172ee13deb1a896eb8350532c1b9e3ba8cc7e6c9eb67d06

Download Submit
memory/1140-8-0x0000000007EB0000-0x0000000007ED6000-memory.dmp

Filesize
152KB

Download
memory/1140-13-0x0000000007FB0000-0x0000000007FBA000-memory.dmp

Filesize
40KB

Download
memory/1140-3-0x00000000050E0000-0x0000000005172000-memory.dmp

Filesize
584KB

Download
memory/1140-5-0x0000000074FE0000-0x0000000075791000-memory.dmp

Filesize
7.7MB

Download
memory/1140-4-0x0000000005180000-0x0000000005212000-memory.dmp

Filesize
584KB

Download
memory/1140-6-0x0000000005230000-0x000000000523A000-memory.dmp

Filesize
40KB

Download
memory/1140-10-0x0000000007EF0000-0x0000000007F06000-memory.dmp

Filesize
88KB

Download
memory/1140-11-0x0000000007F40000-0x0000000007F48000-memory.dmp

Filesize
32KB

Download
memory/1140-9-0x0000000007EE0000-0x0000000007EE8000-memory.dmp

Filesize
32KB

Download
memory/1140-0-0x0000000074FEE000-0x0000000074FEF000-memory.dmp

Filesize
4KB

Download
memory/1140-2-0x0000000005690000-0x0000000005C36000-memory.dmp

Filesize
5.6MB

Download
memory/1140-12-0x0000000007F70000-0x0000000007F7A000-memory.dmp

Filesize
40KB

Download
memory/1140-7-0x0000000005460000-0x000000000546A000-memory.dmp

Filesize
40KB

Download
memory/1140-16-0x00000000080A0000-0x00000000080BE000-memory.dmp

Filesize
120KB

Download
memory/1140-17-0x0000000074FE0000-0x0000000075791000-memory.dmp

Filesize
7.7MB

Download
memory/1140-19-0x0000000074FEE000-0x0000000074FEF000-memory.dmp

Filesize
4KB

Download
memory/1140-20-0x0000000074FE0000-0x0000000075791000-memory.dmp

Filesize
7.7MB

Download
memory/1140-21-0x0000000074FE0000-0x0000000075791000-memory.dmp

Filesize
7.7MB

Download
memory/1140-23-0x0000000074FE0000-0x0000000075791000-memory.dmp

Filesize
7.7MB

Download
memory/1140-1-0x0000000000550000-0x00000000005CE000-memory.dmp

Filesize
504KB

Download
memory/1140-27-0x0000000074FE0000-0x0000000075791000-memory.dmp

Filesize
7.7MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads