Analysis
-
max time kernel
45s -
max time network
48s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
09-10-2022 22:18
Static task
static1
Behavioral task
behavioral1
Sample
92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe
Resource
win10-20220812-en
General
-
Target
92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe
-
Size
56KB
-
MD5
bfc2b4cbcfdbf8eb31dc173f5b9d97f0
-
SHA1
e5ac6c5d068cd6537ebd842757bb1b628c4792fd
-
SHA256
92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d
-
SHA512
4b7d1972f337f31db6bc0a0541e68f4c70007099b35166ca45bdf3d6a484e47f3ed8a75e1ae0b2929903edecde2a763d011a2725577aae5678c63b0c967b8f5b
-
SSDEEP
768:dAvNyKQFHpZQzGFkW5Gedepz4KRCRFVnb+Opu2nh6ixrkvTnEtPw:ky9EMkW5tUqV1b++1h6ixrwEy
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
Processes:
92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exepid process 1764 92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exedescription pid process Token: SeDebugPrivilege 1764 92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe"C:\Users\Admin\AppData\Local\Temp\92c5e473b763ca880890ffbef2e78133c797084465a3ee2427edf7c6e17e767d.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken