Analysis
-
max time kernel
135s -
max time network
49s -
platform
windows10_x64 -
resource
win10v200430 -
submitted
13-07-2020 14:30
Static task
static1
Behavioral task
behavioral1
Sample
Order NFH.exe
Resource
win7
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
Order NFH.exe
Resource
win10v200430
windows10_x64
0 signatures
0 seconds
General
-
Target
Order NFH.exe
-
Size
716KB
-
MD5
e1cd9d71092938389c62ff3cb04f3e21
-
SHA1
4efb32358f982807fe65236ffd73417f8d29f6fd
-
SHA256
66bb65619121b9636dd4c02d3573055922b22e0c55ea1ad093d4b2759bf8118e
-
SHA512
37ae4d6ac8a6022517db42550b43c492f778e1613da04221426844de46c0f7be0544cb4bc14fee841d0a6efc60f98454c5a0c15033834eecdfd5e9d47bc1f680
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
Processes:
Order NFH.exepid process 896 Order NFH.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
Order NFH.exedescription pid process Token: SeDebugPrivilege 896 Order NFH.exe