Overview

overview

3

Static

static

3

47abb445e8...2N.exe

windows7-x64

1

47abb445e8...2N.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-09-2024 05:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    47abb445e8a6d15b8c9d1aaa2fab23e6ceca471c392ad6c89536cf3776a5df82N.exe

  • Size

    176KB

  • MD5

    dcbf3df6ad71fc605e9eed821e5b27d0

  • SHA1

    2fcbcec7392787df96fea1b1092697aee6852a52

  • SHA256

    47abb445e8a6d15b8c9d1aaa2fab23e6ceca471c392ad6c89536cf3776a5df82

  • SHA512

    6d3acc89344fc857c82e90d4183be25d7886e464c317f50e6e25f1dafbee9f53875f297a5507c8f45a865226dc40395a75730480bbbdb95a9fbeab1da39e2004

  • SSDEEP

    3072:ylGoYoyWMxM0Z73ClEHxARI+gbEP06/E2UtZEOUk2gUYpG0jATZrkjSfpsGau4y:ySBM0J3gEAR7gVaUtZEpngPjIZrkY3a

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\47abb445e8a6d15b8c9d1aaa2fab23e6ceca471c392ad6c89536cf3776a5df82N.exe
    "C:\Users\Admin\AppData\Local\Temp\47abb445e8a6d15b8c9d1aaa2fab23e6ceca471c392ad6c89536cf3776a5df82N.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1260

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1260-0-0x00007FFFFF523000-0x00007FFFFF525000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1260-1-0x0000025CC4890000-0x0000025CC48C0000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1260-2-0x0000025CC4C50000-0x0000025CC4C8E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/1260-3-0x0000025CC4C90000-0x0000025CC4C96000-memory.dmp

    Filesize

    24KB

    Download

  • memory/1260-4-0x0000025CDF080000-0x0000025CDF242000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1260-5-0x00007FFFFF520000-0x00007FFFFFFE1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1260-6-0x0000025CDF780000-0x0000025CDFCA8000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/1260-7-0x00007FFFFF523000-0x00007FFFFF525000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1260-8-0x00007FFFFF520000-0x00007FFFFFFE1000-memory.dmp

    Filesize

    10.8MB

    Download