Analysis
-
max time kernel
84s -
max time network
96s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
30/09/2022, 00:08
Behavioral task
behavioral1
Sample
bF16.exe
Resource
win7-20220812-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
bF16.exe
Resource
win10v2004-20220812-en
1 signatures
150 seconds
General
-
Target
bF16.exe
-
Size
32KB
-
MD5
2043cff7ffe0498f9718b6925d9cefff
-
SHA1
9a13a021f69ac623e995bb6bb5940506e23422f5
-
SHA256
459339ad24f46b7d4d28e0badbc1eac08f16af67c88ccde5cbd9b4fd99ee46ab
-
SHA512
ca7cd9dcf617a0c75890b7f0f5fbba7901fa32b6fb367f9768397473a3e2bd23fbc3606e84ae146c8bbba437515cc182b3c673ca4a8b16582e1ea676a873d85a
-
SSDEEP
384:Z0bUe5XB4e0XvObaSjgkM8WTCtTUFQqz9A1ObbS:iT9Bum+SjeSHqbS
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 21 IoCs
description pid Process Token: SeDebugPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe Token: 33 4656 bF16.exe Token: SeIncBasePriorityPrivilege 4656 bF16.exe