Overview

overview

3

Static

static

3

EAC_Melon_.exe

windows11-21h2-x64

3

Analysis

  • max time kernel
    2s
  • max time network
    5s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    26-08-2024 05:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    EAC_Melon_.exe

  • Size

    721KB

  • MD5

    54dff09cc998adac8e2b325fd2714230

  • SHA1

    31592045226b7546cebc871b13941dce602dce3b

  • SHA256

    ad3015fcf72af7fa32386e2d584ddc00ba10fef82e84b4f57adafb6183177542

  • SHA512

    2e1c61e674144b96bf7bd76f260b532610f9745b8f653e9036e1c71fb6f61123ef57285503c3fc893783b89f8943558ca647e31c4fd53cbdb70de7f4da91f2f0

  • SSDEEP

    12288:LL2odKsoH3msuTmlOIq76xb35zdtKTKKpKKMp:lO5gEMWx35p

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\EAC_Melon_.exe
    "C:\Users\Admin\AppData\Local\Temp\EAC_Melon_.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of AdjustPrivilegeToken
    PID:248

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/248-0-0x0000000074FAE000-0x0000000074FAF000-memory.dmp

    Filesize

    4KB

    Download

  • memory/248-1-0x0000000000BB0000-0x0000000000C6A000-memory.dmp

    Filesize

    744KB

    Download

  • memory/248-2-0x0000000003010000-0x000000000303C000-memory.dmp

    Filesize

    176KB

    Download

  • memory/248-3-0x0000000074FA0000-0x0000000075751000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/248-4-0x0000000005DA0000-0x0000000006346000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/248-5-0x00000000057F0000-0x0000000005882000-memory.dmp

    Filesize

    584KB

    Download

  • memory/248-6-0x00000000058B0000-0x00000000058BA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/248-7-0x0000000074FA0000-0x0000000075751000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/248-8-0x0000000008540000-0x00000000085EA000-memory.dmp

    Filesize

    680KB

    Download