Overview

overview

10

Static

static

10

37e705f60a...6f.exe

windows7-x64

1

37e705f60a...6f.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    22-02-2025 13:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    37e705f60ad7cad2da1f1a7579f2d27bfad2202102d55183c7972e29b0aeaf6f.exe

  • Size

    1.7MB

  • MD5

    d468ab385b159045aad3e3977971cb15

  • SHA1

    b687a46f065b0a3ba6cbffeb52e7c89768ad0414

  • SHA256

    37e705f60ad7cad2da1f1a7579f2d27bfad2202102d55183c7972e29b0aeaf6f

  • SHA512

    ff08473cbad93c68e833e5b8086c7871e87b65daa8d0c2c068808bb1bf22589711d878775907c030ed1710ec98e652d507b05d9cf3d806ed1a164fb5294cca49

  • SSDEEP

    24576:5W0Wgnam5hmEWkmgcOWsx1eIWWOJQpC2L/FaAHrW5DSVXT5XkIsxyap:5WtmuEvmgcO1DP62rFaAHrbXT5XkZ1p

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\37e705f60ad7cad2da1f1a7579f2d27bfad2202102d55183c7972e29b0aeaf6f.exe
    "C:\Users\Admin\AppData\Local\Temp\37e705f60ad7cad2da1f1a7579f2d27bfad2202102d55183c7972e29b0aeaf6f.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2104-0-0x000007FEF6573000-0x000007FEF6574000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2104-1-0x0000000000240000-0x0000000000274000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2104-2-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-3-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-4-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-7-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-6-0x0000000000490000-0x000000000049A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2104-5-0x0000000000490000-0x000000000049A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2104-11-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-12-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-32-0x000007FEF6573000-0x000007FEF6574000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2104-33-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-37-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-38-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-40-0x0000000000490000-0x000000000049A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2104-39-0x0000000000490000-0x000000000049A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2104-41-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2104-42-0x000007FEF6570000-0x000007FEF6F5C000-memory.dmp

    Filesize

    9.9MB

    Download