Overview

overview

10

Static

static

3

d06a50c05d...1N.exe

windows7-x64

1

d06a50c05d...1N.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    116s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2025, 05:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d06a50c05d6bef94ebac93fd24f2dd6501c6eeabd3c3115db865ef59726041d1N.exe

  • Size

    226KB

  • MD5

    a47e649e331a5b8373dc805f660f86f0

  • SHA1

    548eb34e46ba6d0660e1ab16d63406b240f5266d

  • SHA256

    d06a50c05d6bef94ebac93fd24f2dd6501c6eeabd3c3115db865ef59726041d1

  • SHA512

    74f6d3767b99920d64f29b393df366b477ceece8118d1ffcbdc1cb9491c3b5c5bb316760655a797a8f639eb7eb917b17d795bd63ae5ac6dae6b2637bbf659de6

  • SSDEEP

    3072:MPtNct54MPLI8UGQyV7yBlL5++cpuFjBWjiewRbAnEnJjiBFjv6sKwuq0WC0C:0tgTIyQyV78llEgYie6bSEnJjd

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d06a50c05d6bef94ebac93fd24f2dd6501c6eeabd3c3115db865ef59726041d1N.exe
    "C:\Users\Admin\AppData\Local\Temp\d06a50c05d6bef94ebac93fd24f2dd6501c6eeabd3c3115db865ef59726041d1N.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3032-2-0x000007FEF5A20000-0x000007FEF640C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3032-1-0x0000000000E40000-0x0000000000E7E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/3032-0-0x000007FEF5A23000-0x000007FEF5A24000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3032-3-0x000007FEF5A23000-0x000007FEF5A24000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3032-4-0x000007FEF5A20000-0x000007FEF640C000-memory.dmp

    Filesize

    9.9MB

    Download