Analysis
-
max time kernel
154s -
max time network
157s -
platform
windows7_x64 -
resource
win7-20220718-en -
resource tags
arch:x64arch:x86image:win7-20220718-enlocale:en-usos:windows7-x64system -
submitted
11/08/2022, 14:59
Behavioral task
behavioral1
Sample
ZX1.exe
Resource
win7-20220718-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
ZX1.exe
Resource
win10v2004-20220721-en
1 signatures
150 seconds
General
-
Target
ZX1.exe
-
Size
32KB
-
MD5
7c9b3362ff75c5e95577a18412c4203b
-
SHA1
8f0d4d0b50eb359e5c44126fb8abce60d8c44fb3
-
SHA256
50be00fcfe23b947d1a87ed5f052a64482f2674bb6d4db6ff8ab8791778a84ec
-
SHA512
38f39fbb7b06828e23d2381c58c83b7804da7033f3b5fe7abfa475c292348dbc7e2c49bd35827c5045fc792811379b41880bbfb628f2411eb4c3ef3880598e43
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 21 IoCs
description pid Process Token: SeDebugPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe Token: 33 308 ZX1.exe Token: SeIncBasePriorityPrivilege 308 ZX1.exe