Static

static

3

49c43e2e1a...b2.exe

windows7-x64

1

49c43e2e1a...b2.exe

 

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09-07-2024 21:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49c43e2e1ada329219c278e0fdbb3d93e6bea1ec5df0744fe63353cc823beab2.exe

  • Size

    702KB

  • MD5

    cba6c613eb6eb68aae10316eab223963

  • SHA1

    1eaeaa38e3662726d838d876f855f211035519fc

  • SHA256

    49c43e2e1ada329219c278e0fdbb3d93e6bea1ec5df0744fe63353cc823beab2

  • SHA512

    d6e96edcba42efae5f4873c4c2848769d7999da9a520fdaa9943d0785e49d1ab82460b2b2e8021cf9341f9884cb82ff6cc7b94f882e84258d0212a4964a951b7

  • SSDEEP

    12288:aSOFz/kwWCIkeRlk7ugd1EOFcNW2f+zRIxzA0RJ4P3Zu/t4ZJ0FSlg6BdLET7bIV:UFjfWHRlMugdD+JsRgZRJ4fM430Eg6nj

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\49c43e2e1ada329219c278e0fdbb3d93e6bea1ec5df0744fe63353cc823beab2.exe
    "C:\Users\Admin\AppData\Local\Temp\49c43e2e1ada329219c278e0fdbb3d93e6bea1ec5df0744fe63353cc823beab2.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2092-0-0x00000000004C0000-0x0000000000527000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2092-8-0x00000000004C0000-0x0000000000527000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2092-5-0x0000000000400000-0x00000000004B6000-memory.dmp

    Filesize

    728KB

    Download

  • memory/2092-11-0x0000000000400000-0x00000000004B6000-memory.dmp

    Filesize

    728KB

    Download