Overview

overview

10

Static

static

10

c0da7e1bc9...57.exe

windows7-x64

1

c0da7e1bc9...57.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250129-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250129-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01-02-2025 23:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c0da7e1bc9dcd3348d3d52324c796626c75fa0103e5dfe42cb2804492591fd57.exe

  • Size

    1.1MB

  • MD5

    84599945950f6c1ef8777abede39f466

  • SHA1

    d4a10b4c65122863b4cb80cfc2c062ade920e961

  • SHA256

    c0da7e1bc9dcd3348d3d52324c796626c75fa0103e5dfe42cb2804492591fd57

  • SHA512

    90fcae2118ebc58d21fc3a89c666c16c0a1ac23dd5eaf18d40c874b648a1f8f0f816b2918b045dde0e2ce744eccc5849e2c91e987648aa373cb9a18941d8787e

  • SSDEEP

    24576:hN6pEy2FEtP1v4Bi5KIfkDumhieyxqDdRPDSBwbJ7H:CDNttv4greMeiqLRV7H

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c0da7e1bc9dcd3348d3d52324c796626c75fa0103e5dfe42cb2804492591fd57.exe
    "C:\Users\Admin\AppData\Local\Temp\c0da7e1bc9dcd3348d3d52324c796626c75fa0103e5dfe42cb2804492591fd57.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2072

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2072-0-0x00007FFE08A53000-0x00007FFE08A55000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2072-3-0x0000019371350000-0x0000019371380000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2072-6-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-7-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-8-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-9-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-10-0x0000019371A00000-0x0000019371A08000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2072-11-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-12-0x0000019371F20000-0x0000019371F58000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2072-13-0x0000019371EE0000-0x0000019371EEE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2072-28-0x00007FFE08A53000-0x00007FFE08A55000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2072-29-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-30-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-31-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2072-32-0x00007FFE08A50000-0x00007FFE09511000-memory.dmp

    Filesize

    10.8MB

    Download