Overview

overview

3

Static

static

3

BoltBaitPa...11.exe

windows7-x64

1

BoltBaitPa...11.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    104s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29-08-2024 11:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    BoltBaitPackInstall611.exe

  • Size

    15.1MB

  • MD5

    bc2a8f54f9fc021e38f5fec2b45e7774

  • SHA1

    22af387bb0bc2d6b0d3ba34d4de18e145ca33d51

  • SHA256

    595d3edb81e7fa7fcfb51b67a64820f5d1e76ca5907dc32310cc1df75ed59079

  • SHA512

    5bbd9058a0ba671336701901d5b4ec4fcc5604acb0da711e4c10460cc81073f4bf3aaac1e63aa0eb6ee47a04cd086bd9c0a3a5883eb6e9cd898aa7914e27ad8f

  • SSDEEP

    196608:bxuUl+Ox1NG1oeKImpRxpBkbIoPTdie6uRUqA1fFl/Fs4E6ZK:9rG1oeKImpRxcbIogfFLsYZ

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\BoltBaitPackInstall611.exe
    "C:\Users\Admin\AppData\Local\Temp\BoltBaitPackInstall611.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4820

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4820-0-0x00007FF9FB583000-0x00007FF9FB585000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4820-1-0x0000025266550000-0x0000025267476000-memory.dmp

    Filesize

    15.1MB

    Download

  • memory/4820-2-0x00007FF9FB580000-0x00007FF9FC041000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4820-3-0x00007FF9FB580000-0x00007FF9FC041000-memory.dmp

    Filesize

    10.8MB

    Download