Overview

overview

10

Static

static

10

b41c755f8b...40.exe

windows7-x64

1

b41c755f8b...40.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    138s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/03/2025, 03:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b41c755f8b423e6534ee7228da3ae9d244f83dd2e13b90114bc75bacceeb1040.exe

  • Size

    1.4MB

  • MD5

    645f1525857da646d74b2911ce50638c

  • SHA1

    99bade72bafb8a62bc001b1b08846da902ad9b30

  • SHA256

    b41c755f8b423e6534ee7228da3ae9d244f83dd2e13b90114bc75bacceeb1040

  • SHA512

    3052ec28dc4c8ff7392e712c543a69299144b935685acd492f51af25f50a574a29849e8dcfc39f9c066226500f1700766eeedcc508222a5de31f8504e195f54a

  • SSDEEP

    24576:YlIFWm3UdC7AVOnrl/6aucZnCDFrNTDSDx+yaB:7k1VqB6yZnSf1B

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b41c755f8b423e6534ee7228da3ae9d244f83dd2e13b90114bc75bacceeb1040.exe
    "C:\Users\Admin\AppData\Local\Temp\b41c755f8b423e6534ee7228da3ae9d244f83dd2e13b90114bc75bacceeb1040.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:3460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3460-0-0x00007FFF13E83000-0x00007FFF13E85000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3460-3-0x0000023FDC200000-0x0000023FDC232000-memory.dmp

    Filesize

    200KB

    Download

  • memory/3460-6-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-7-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-8-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-9-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-10-0x0000023FFA530000-0x0000023FFA538000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3460-12-0x0000023FF6610000-0x0000023FF661E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3460-11-0x0000023FF6640000-0x0000023FF6678000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3460-16-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-26-0x00007FFF13E83000-0x00007FFF13E85000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3460-27-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-28-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-29-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3460-30-0x00007FFF13E80000-0x00007FFF14941000-memory.dmp

    Filesize

    10.8MB

    Download