Overview

overview

10

Static

static

10

60f1389413...ac.exe

windows7-x64

1

60f1389413...ac.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20241023-en
  • resource tags

    arch:x64arch:x86image:win7-20241023-enlocale:en-usos:windows7-x64system
  • submitted
    04-02-2025 07:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    60f1389413fad873d644bd68b0e62e9c5fdf9d0f3760a8eca87b71b4b3b5c6ac.exe

  • Size

    1.3MB

  • MD5

    61d8defbcc5d2bcd57ed002047cde05f

  • SHA1

    18d082f10130d309a8398975903127a899f2196d

  • SHA256

    60f1389413fad873d644bd68b0e62e9c5fdf9d0f3760a8eca87b71b4b3b5c6ac

  • SHA512

    1bc6f54a71189ba227d9814d1a836863471ed0a5f6683d6c24adcc0857419009509269501dc6c27baed99fb06d80714d73b94056b65c780eac536618394fbba8

  • SSDEEP

    24576:9TspSbc9KJAhZBcddOjhoL+UpOBkbJ7PDSi:Q/937adEVorpOBkV7L

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\60f1389413fad873d644bd68b0e62e9c5fdf9d0f3760a8eca87b71b4b3b5c6ac.exe
    "C:\Users\Admin\AppData\Local\Temp\60f1389413fad873d644bd68b0e62e9c5fdf9d0f3760a8eca87b71b4b3b5c6ac.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:1832

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1832-0-0x000007FEF5B73000-0x000007FEF5B74000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1832-1-0x0000000000340000-0x0000000000372000-memory.dmp

    Filesize

    200KB

    Download

  • memory/1832-2-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-3-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-4-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-7-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-9-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-10-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-11-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-12-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-13-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-14-0x000007FEF5B73000-0x000007FEF5B74000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1832-15-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-29-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-30-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-31-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-32-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/1832-33-0x000007FEF5B70000-0x000007FEF655C000-memory.dmp

    Filesize

    9.9MB

    Download