Analysis

  • max time kernel
    105s
  • max time network
    113s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-11-2024 01:06

General

  • Target

    1579d351c44c4ef97ff1973146d94e6c847d767cf9c33525f89db570317a3ffb.exe

  • Size

    1.6MB

  • MD5

    8dcf8d07308cb1b65f5b95972309e9fa

  • SHA1

    872054eab5154f82d1e1cf63e10bbf7e1ea98681

  • SHA256

    1579d351c44c4ef97ff1973146d94e6c847d767cf9c33525f89db570317a3ffb

  • SHA512

    c25f9c063a106836b2d5568298835fdc4c25a86259fea6de6d5f6e092943aa0b548a2a61793c7d9895eb51100b67e6b0f549769b36a70e12c5fc77a130575bfd

  • SSDEEP

    49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOYgDpHBxme:GemTLkNdfE0pZy7

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1579d351c44c4ef97ff1973146d94e6c847d767cf9c33525f89db570317a3ffb.exe
    "C:\Users\Admin\AppData\Local\Temp\1579d351c44c4ef97ff1973146d94e6c847d767cf9c33525f89db570317a3ffb.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2616

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2616-0-0x0000015CB8FD0000-0x0000015CB8FE0000-memory.dmp

    Filesize

    64KB