Overview

overview

10

Static

static

10

b8b78dcf13...d2.exe

windows7-x64

10

b8b78dcf13...d2.exe

windows10-2004-x64

10

b8d253be83...33.exe

windows7-x64

10

b8d253be83...33.exe

windows10-2004-x64

7

b8ed4395ab...f9.exe

windows7-x64

7

b8ed4395ab...f9.exe

windows10-2004-x64

7

b93347150f...89.exe

windows7-x64

1

b93347150f...89.exe

windows10-2004-x64

1

b936c3a846...59.exe

windows7-x64

1

b936c3a846...59.exe

windows10-2004-x64

1

b985e2e2a0...ef.exe

windows7-x64

3

b985e2e2a0...ef.exe

windows10-2004-x64

10

b99adb733f...40.exe

windows7-x64

10

b99adb733f...40.exe

windows10-2004-x64

10

b9cfd0a072...65.exe

windows7-x64

10

b9cfd0a072...65.exe

windows10-2004-x64

10

b9d4ce4583...bc.exe

windows7-x64

10

b9d4ce4583...bc.exe

windows10-2004-x64

10

b9eb72c666...72.exe

windows7-x64

10

b9eb72c666...72.exe

windows10-2004-x64

10

b9f7b13b1d...ef.exe

windows7-x64

10

b9f7b13b1d...ef.exe

windows10-2004-x64

10

ba0566e43d...23.exe

windows7-x64

1

ba0566e43d...23.exe

windows10-2004-x64

1

ba21b0abda...c0.exe

windows7-x64

9

ba21b0abda...c0.exe

windows10-2004-x64

9

ba4d84a77a...85.exe

windows7-x64

10

ba4d84a77a...85.exe

windows10-2004-x64

10

ba598ceed6...17.exe

windows7-x64

10

ba598ceed6...17.exe

windows10-2004-x64

10

ba6c7a8dc7...59.exe

windows7-x64

10

ba6c7a8dc7...59.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    105s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/03/2025, 06:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ba0566e43d769a982fa83229aa91c19d9b96ebeb16abb8be188836e40b79b323.exe

  • Size

    1.4MB

  • MD5

    9f853d4ffc6f6c8ab578082820da8601

  • SHA1

    b3a6ce539d4a87b986e89841623ebd0b91da4cde

  • SHA256

    ba0566e43d769a982fa83229aa91c19d9b96ebeb16abb8be188836e40b79b323

  • SHA512

    6b1dcd801a05c503d7e7513116d5e684612cef6ec041e93d103f8481d223fa20dca79334bc42ceb22c7d90bee7dc81968becf6fbe7cf9f7e678d30deca0d2cab

  • SSDEEP

    24576:ouwVlXkX8XOvCCK9B18gvPxXf/73UaubFYv0erEZQpgIWTfs90HXWt:ouwVxo8XOvg9kCpXr3MbwzpDWg9MW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ba0566e43d769a982fa83229aa91c19d9b96ebeb16abb8be188836e40b79b323.exe
    "C:\Users\Admin\AppData\Local\Temp\ba0566e43d769a982fa83229aa91c19d9b96ebeb16abb8be188836e40b79b323.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:4020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4020-0-0x00007FFB7E983000-0x00007FFB7E985000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4020-1-0x00000000009C0000-0x0000000000B2A000-memory.dmp

    Filesize

    1.4MB

    Download

  • memory/4020-3-0x00007FFB7E980000-0x00007FFB7F441000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/4020-4-0x00007FFB7E980000-0x00007FFB7F441000-memory.dmp

    Filesize

    10.8MB

    Download