Analysis

  • max time kernel
    105s
  • max time network
    113s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-11-2024 00:26

General

  • Target

    beec2178678bcdcd6136fe276d5d7f45bc0b171dd19bc7f6534666f2065a844c.exe

  • Size

    1.7MB

  • MD5

    00ac3ed1fc1bffb1a7fa9532689750f3

  • SHA1

    5dc24624e9e284c7aeee1d02f55a25c7f93b42f3

  • SHA256

    beec2178678bcdcd6136fe276d5d7f45bc0b171dd19bc7f6534666f2065a844c

  • SHA512

    91d5ccd9fe13b6690e712600f82881c1edca105b45bcd33e5d76160b109f0b1def3d4187897f2ff034f87617eaa0bbde3f9c703a5bb1c8b3a1177bc780e8a210

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQmnVwYDLQ:GemTLkNdfE0pZyu

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\beec2178678bcdcd6136fe276d5d7f45bc0b171dd19bc7f6534666f2065a844c.exe
    "C:\Users\Admin\AppData\Local\Temp\beec2178678bcdcd6136fe276d5d7f45bc0b171dd19bc7f6534666f2065a844c.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/652-0-0x000002C68BE50000-0x000002C68BE60000-memory.dmp

    Filesize

    64KB