Overview

overview

10

Static

static

10

f047a54635...ce.exe

windows7-x64

1

f047a54635...ce.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    24/03/2025, 12:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f047a54635c05e9e16e235ee09d1a1162bb49f035c222ef8a7657a29612303ce.exe

  • Size

    1.2MB

  • MD5

    be292716ecac2dcc9a10f8ba725afc99

  • SHA1

    c8a927dd7f207fe8b0664ea98f36b585a243e044

  • SHA256

    f047a54635c05e9e16e235ee09d1a1162bb49f035c222ef8a7657a29612303ce

  • SHA512

    93359dac4378fcc4d2784abfa830b722c1ea49e18a2fc00e3f0346a1cb7b513a15591b558b9d89f71c710d56ca61a4c67be88594e63e4a68f077d4aa370dfaf2

  • SSDEEP

    24576:osIV0SK7h5Yy4rxUMhWpOlZAb6utlJVdeeWIguOL+4nDS2bJ70:oR0V49USWz6ZfjL+4lV70

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f047a54635c05e9e16e235ee09d1a1162bb49f035c222ef8a7657a29612303ce.exe
    "C:\Users\Admin\AppData\Local\Temp\f047a54635c05e9e16e235ee09d1a1162bb49f035c222ef8a7657a29612303ce.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2480-0-0x000007FEF5EA3000-0x000007FEF5EA4000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2480-1-0x0000000001B90000-0x0000000001BD8000-memory.dmp

    Filesize

    288KB

    Download

  • memory/2480-2-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-3-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-4-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-5-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-6-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-10-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-11-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-34-0x000007FEF5EA3000-0x000007FEF5EA4000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2480-35-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-36-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-37-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-38-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-39-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download

  • memory/2480-40-0x000007FEF5EA0000-0x000007FEF688C000-memory.dmp

    Filesize

    9.9MB

    Download