Overview

overview

10

Static

static

10

7zSCD97F9B...72.exe

windows7-x64

7zSCD97F9B...72.exe

windows10-2004-x64

7zSCD97F9B...28.exe

windows7-x64

7zSCD97F9B...28.exe

windows10-2004-x64

7zSCD97F9B...82.exe

windows7-x64

7zSCD97F9B...82.exe

windows10-2004-x64

7zSCD97F9B...7c.exe

windows7-x64

3

7zSCD97F9B...7c.exe

windows10-2004-x64

7

7zSCD97F9B...08.exe

windows7-x64

7

7zSCD97F9B...08.exe

windows10-2004-x64

7

7zSCD97F9B...5c.exe

windows7-x64

6

7zSCD97F9B...5c.exe

windows10-2004-x64

3

7zSCD97F9B...51.exe

windows7-x64

10

7zSCD97F9B...51.exe

windows10-2004-x64

10

7zSCD97F9B...09.exe

windows7-x64

1

7zSCD97F9B...09.exe

windows10-2004-x64

1

7zSCD97F9B...cd.exe

windows7-x64

6

7zSCD97F9B...cd.exe

windows10-2004-x64

6

7zSCD97F9B...9d.exe

windows7-x64

3

7zSCD97F9B...9d.exe

windows10-2004-x64

3

7zSCD97F9B...69.exe

windows7-x64

8

7zSCD97F9B...69.exe

windows10-2004-x64

8

7zSCD97F9B...5c.exe

windows7-x64

6

7zSCD97F9B...5c.exe

windows10-2004-x64

6

7zSCD97F9B...57.exe

windows7-x64

10

7zSCD97F9B...57.exe

windows10-2004-x64

10

7zSCD97F9B...00.exe

windows7-x64

3

7zSCD97F9B...00.exe

windows10-2004-x64

3

7zSCD97F9B...61.exe

windows7-x64

9

7zSCD97F9B...61.exe

windows10-2004-x64

9

7zSCD97F9B...rl.dll

windows7-x64

3

7zSCD97F9B...rl.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-12-2024 13:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7zSCD97F9B7/61cf42d96bbd5_Fri1768e6cd.exe

  • Size

    8KB

  • MD5

    d7f55160e4884c2917c39d3ae7f618b3

  • SHA1

    b8b48396d98f492c98f8c5f9ca88ef32f9d47033

  • SHA256

    4b8d0340ceb7fe26b41c04c590bb68791865274132f73b0cd59265f3c63d96c8

  • SHA512

    af49101f633a964b54fa3e8baf2d97bc0cade00f5087dd51b1b281991f808a82359664b36e3450662ff3fbd5ee9dd6ccebde547d14f15ee09ffee909124544a6

  • SSDEEP

    96:MJOunDNLXqqCWV2sLZSukdrKozt1HfWP5KczNt:W2qH3LGr3H+Im

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 31 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7zSCD97F9B7\61cf42d96bbd5_Fri1768e6cd.exe
    "C:\Users\Admin\AppData\Local\Temp\7zSCD97F9B7\61cf42d96bbd5_Fri1768e6cd.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:964

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/964-1-0x0000000000F10000-0x0000000000F18000-memory.dmp

    Filesize

    32KB

    Download

  • memory/964-0-0x00007FF878A33000-0x00007FF878A35000-memory.dmp

    Filesize

    8KB

    Download

  • memory/964-2-0x00007FF878A30000-0x00007FF8794F1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/964-3-0x00007FF878A30000-0x00007FF8794F1000-memory.dmp

    Filesize

    10.8MB

    Download