Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows10_x64 -
resource
win10 -
submitted
13-07-2020 11:38
Static task
static1
Behavioral task
behavioral1
Sample
Order_02257PDF.exe
Resource
win7v200430
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
Order_02257PDF.exe
Resource
win10
windows10_x64
0 signatures
0 seconds
General
-
Target
Order_02257PDF.exe
-
Size
735KB
-
MD5
caf43e6088bea3ee2a92e7b4061663dc
-
SHA1
f61ae2e44f2735ffb26ddf639cb62a2670fd27bd
-
SHA256
c28900c5d2b84c527a1d1ca867faac1fa8ac195d6a1df64b1f5e2607db77b774
-
SHA512
78feef15b8ca5640fc0e57706e3637fd2af87d8da5013ea84cf114ca76f61b9017a23573439a0f086d9a242bcefb6408b8b26de57a3caf6cc3e0815a14195de6
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
Processes:
Order_02257PDF.exepid process 3900 Order_02257PDF.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
Order_02257PDF.exedescription pid process Token: SeDebugPrivilege 3900 Order_02257PDF.exe