Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    01-08-2024 22:58

General

  • Target

    Stub.exe

  • Size

    486KB

  • MD5

    364c1477a744c7f21a45f919ff3ce22d

  • SHA1

    6fa4f6eb37f795350ada91c21f14a603301b84ab

  • SHA256

    727131e77f2ae497e0e593f8eb3734197f12364e894f16f7d9da03b726e7aff0

  • SHA512

    0139166faa6f7fe2715396f852d91b7130b8987b47cfe22e97872daf6c5c8a2344f181986b627c6e21e03a0f9abdc2e95a3e7778958d837bf949e8b41a97096d

  • SSDEEP

    6144:ofyuEn2FoC2LTGzSLOwzTlFh/eHYwxTlx24PXB0I0+CDDmdZMOIv9vsZ6E/LZVf:ofPEq2TaKTPhWHLwhDDmIGcED

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Stub.exe
    "C:\Users\Admin\AppData\Local\Temp\Stub.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2304-0-0x000007FEF533E000-0x000007FEF533F000-memory.dmp

    Filesize

    4KB

  • memory/2304-1-0x000007FEF5080000-0x000007FEF5A1D000-memory.dmp

    Filesize

    9.6MB

  • memory/2304-2-0x000007FEF5080000-0x000007FEF5A1D000-memory.dmp

    Filesize

    9.6MB

  • memory/2304-3-0x000007FEF5080000-0x000007FEF5A1D000-memory.dmp

    Filesize

    9.6MB

  • memory/2304-4-0x000007FEF5080000-0x000007FEF5A1D000-memory.dmp

    Filesize

    9.6MB