Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    13-11-2024 23:59

General

  • Target

    0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe

  • Size

    1.3MB

  • MD5

    8aee8c7e9cf541e2255ac130d5ab82a3

  • SHA1

    51101455cf8f0e8b0c780dbef90232f0330ac4d4

  • SHA256

    0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66

  • SHA512

    90e937c111fde6b9635be87c71d129114b022c6f4c2f1b8ab47a4ecce96aeab0d64c461f0cb67a6b0a11bb5d9a13e04bf476c4cb62b9f0d5666df33f62c57a30

  • SSDEEP

    24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5ph7NAmE25u:GezaTF8FcNkNdfE0pZ9ozttwIRxHTi

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe
    "C:\Users\Admin\AppData\Local\Temp\0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2704

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2704-0-0x00000000001F0000-0x0000000000200000-memory.dmp

    Filesize

    64KB