Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    09-08-2024 12:18

General

  • Target

    file.exe

  • Size

    538KB

  • MD5

    913bdfccaaed0a1ed80d2c52e5f5d7c3

  • SHA1

    9befba3d43ace45a777d2e936e1046e7a0fb634c

  • SHA256

    93e66ad3eea5b3217d9a016cb96951ab2dd0ae3f3ef6c2782667abacaaa8018f

  • SHA512

    1999d174e14b96ccb35dc8ffa2cc576aff9d01d9373654a2a0f78342735e8b637f605144f5c56e922dc5ee43afb82e62ab9f21e0ecfd33a1b8369344346f90e6

  • SSDEEP

    6144:EYqdc0NkzDV4L3eTIlA414pcN3p0NIb88WsNMPaKFP3b2V122J0sL:E9J8+jP4cN3CNIb88WsNMP5F1k

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\file.exe
    "C:\Users\Admin\AppData\Local\Temp\file.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2652

Network

    No results found
  • 91.92.240.41:80
    http
    file.exe
    2.8MB
    57.2kB
    2015
    797
No results found

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2652-0-0x000007FEF5F63000-0x000007FEF5F64000-memory.dmp

    Filesize

    4KB

  • memory/2652-1-0x0000000000360000-0x00000000003EC000-memory.dmp

    Filesize

    560KB

  • memory/2652-2-0x000007FEF5F60000-0x000007FEF694C000-memory.dmp

    Filesize

    9.9MB

  • memory/2652-3-0x000007FEF5F60000-0x000007FEF694C000-memory.dmp

    Filesize

    9.9MB

  • memory/2652-4-0x000007FEF5F60000-0x000007FEF694C000-memory.dmp

    Filesize

    9.9MB

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.