Analysis
-
max time kernel
39s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220715-en -
resource tags
arch:x64arch:x86image:win7-20220715-enlocale:en-usos:windows7-x64system -
submitted
20-07-2022 17:58
Behavioral task
behavioral1
Sample
wps_0000000001AA0000.dll
Resource
win7-20220715-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
wps_0000000001AA0000.dll
Resource
win10v2004-20220718-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
wps_0000000001AA0000.dll
-
Size
208KB
-
MD5
6c59df4af7127f69cfee1aba17cae985
-
SHA1
4ee6b1c68189e25d8c47ced7d0cbb29db484905a
-
SHA256
527c776c2718e4e9be884d2b79c5a79a5cebf1512d04785c5949862c4bae7253
-
SHA512
ec12a1b7ad44cfe3d135fbc3ee6b782d911f155481e6dab974e94a2246302af1d413b9d507df7e58e5c6e4d3e8bcc98eba8266fe7fbd71ad82a575df57e57fa0
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
rundll32.exedescription pid process Token: SeDebugPrivilege 2032 rundll32.exe Token: SeTcbPrivilege 2032 rundll32.exe