Overview

overview

10

Static

static

10

17982359ff...7b.exe

windows7-x64

1

17982359ff...7b.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    03-02-2025 15:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17982359ffc28eb2e30097ac6450f92d87875e7661fd52ceb90f54c68be3397b.exe

  • Size

    1.7MB

  • MD5

    c94ec926f66fe986f01315ccac9074b5

  • SHA1

    c06f081fa405c01a879d1d6e665589af5549b60f

  • SHA256

    17982359ffc28eb2e30097ac6450f92d87875e7661fd52ceb90f54c68be3397b

  • SHA512

    36cfc06fc3c37084355c98a696a6d474f0e2da774ffdfdee5f2dea1914049a8b77cf19f914ae30abf7910ab11a85440d1fcc2b93ced4dae1869f7023feb7ca17

  • SSDEEP

    24576:6cFXPdQPnXlEaC6GoQl1VlzyExnLKrg70K6mQX+M6zbpy1Z/siZGDSVXT5XzBhi4:6cFX6PqxnLKg70xUzg1VsuLXT5XR1B

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\17982359ffc28eb2e30097ac6450f92d87875e7661fd52ceb90f54c68be3397b.exe
    "C:\Users\Admin\AppData\Local\Temp\17982359ffc28eb2e30097ac6450f92d87875e7661fd52ceb90f54c68be3397b.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3044-0-0x000007FEF5B63000-0x000007FEF5B64000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3044-1-0x0000000000140000-0x0000000000174000-memory.dmp

    Filesize

    208KB

    Download

  • memory/3044-2-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-3-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-4-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-5-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-6-0x00000000001A0000-0x00000000001AA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3044-7-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-8-0x00000000001A0000-0x00000000001AA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3044-12-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-32-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-36-0x000007FEF5B63000-0x000007FEF5B64000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3044-37-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-38-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-39-0x00000000001A0000-0x00000000001AA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3044-40-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/3044-41-0x00000000001A0000-0x00000000001AA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3044-42-0x000007FEF5B60000-0x000007FEF654C000-memory.dmp

    Filesize

    9.9MB

    Download