Overview

overview

10

Static

static

10

5e39c4e72c...dc.exe

windows7-x64

1

5e39c4e72c...dc.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250217-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250217-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/03/2025, 16:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5e39c4e72c227c7c8078f47481b635f646074aebff24bbcc2d66bbfed2e477dc.exe

  • Size

    1.3MB

  • MD5

    2a98d2215dfb38ce9c9614edadc359cc

  • SHA1

    4ea2f52aa2ff0a6fa37d22405cbdd73a451fdccf

  • SHA256

    5e39c4e72c227c7c8078f47481b635f646074aebff24bbcc2d66bbfed2e477dc

  • SHA512

    8f80e8f40145e2045b006eeb7010078ec86c83362ede1a5025ee0e00a5f99dd3f152e6fd2fed8a9f2d9a22f719a895f1416e907c46e4fcfdbca6b88d9dde388d

  • SSDEEP

    24576:QUiy8fkHcLMXk36ZgZx+gR1QWrNbGjWvAhkF6bJ7kDSi:ZiPfkyMUqZwxVBFGjW4SsV7W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5e39c4e72c227c7c8078f47481b635f646074aebff24bbcc2d66bbfed2e477dc.exe
    "C:\Users\Admin\AppData\Local\Temp\5e39c4e72c227c7c8078f47481b635f646074aebff24bbcc2d66bbfed2e477dc.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:1360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1360-0-0x00007FF967533000-0x00007FF967535000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1360-1-0x00000210437A0000-0x00000210437D2000-memory.dmp

    Filesize

    200KB

    Download

  • memory/1360-3-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-2-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-4-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-7-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-9-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-10-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-17-0x00007FF967533000-0x00007FF967535000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1360-18-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-19-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-20-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-21-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-22-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1360-23-0x00007FF967530000-0x00007FF967FF1000-memory.dmp

    Filesize

    10.8MB

    Download