Analysis

  • max time kernel
    105s
  • max time network
    121s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13-11-2024 23:40

General

  • Target

    d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe

  • Size

    1.5MB

  • MD5

    e1676b726d4bb4b582716a0439bda6e6

  • SHA1

    b25155262d4f16f220ab84b4b233d10f0afd8cec

  • SHA256

    d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4

  • SHA512

    0bb680233e70032cfa81180d49f9e9f9b2315049e627a8e55f281ba8a5755fedcae1729e78c3c7491651adb08d090033c2ea9663372560fc0829ff90c6a44732

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9ozttwIRx2T9va4fWpagY:GemTLkNdfE0pZyI

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe
    "C:\Users\Admin\AppData\Local\Temp\d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4424-0-0x00000230C2990000-0x00000230C29A0000-memory.dmp

    Filesize

    64KB