Overview

overview

10

Static

static

10

a448793126...93.exe

windows7-x64

1

a448793126...93.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    131s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250129-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250129-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-02-2025 06:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a448793126f4fbeb82e12d005bcad689a4ed4687e9d1fec6254f3f2aaa585e93.exe

  • Size

    1.4MB

  • MD5

    1b7842a5be879b376a1690cd432c92db

  • SHA1

    ee9791e503f19d57fc872e517f3fe840f0280361

  • SHA256

    a448793126f4fbeb82e12d005bcad689a4ed4687e9d1fec6254f3f2aaa585e93

  • SHA512

    3f80f727ceb472515b7c628dbee589ca2d6473aedf9ce3477dc584656cb83766b7b1dd0f0e6315ee5e1f79798a5309e6871ea274c55888ac61a36465e4caad62

  • SSDEEP

    24576:xPuw4Etx4IpYOi24wvnwqNwaeb9IXSd+vykvpDSxcAbJ7Y:AwD4IpiXwvwqpeb9IXSsv5vlAV7Y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a448793126f4fbeb82e12d005bcad689a4ed4687e9d1fec6254f3f2aaa585e93.exe
    "C:\Users\Admin\AppData\Local\Temp\a448793126f4fbeb82e12d005bcad689a4ed4687e9d1fec6254f3f2aaa585e93.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/392-0-0x00007FFBD86B3000-0x00007FFBD86B5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/392-1-0x000002816BB30000-0x000002816BB6E000-memory.dmp

    Filesize

    248KB

    Download

  • memory/392-2-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-5-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-6-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-8-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-9-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-21-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-22-0x00007FFBD86B3000-0x00007FFBD86B5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/392-23-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-24-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-25-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-26-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/392-27-0x00007FFBD86B0000-0x00007FFBD9171000-memory.dmp

    Filesize

    10.8MB

    Download