Analysis
-
max time kernel
150s -
max time network
47s -
platform
windows7_x64 -
resource
win7-20220901-en -
resource tags
arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system -
submitted
11-10-2022 08:50
Behavioral task
behavioral1
Sample
8008947e567bf61aea5ed4be94f1d0766a903e3cb64522be854dfad58bea8e09.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
8008947e567bf61aea5ed4be94f1d0766a903e3cb64522be854dfad58bea8e09.exe
Resource
win10v2004-20220901-en
General
-
Target
8008947e567bf61aea5ed4be94f1d0766a903e3cb64522be854dfad58bea8e09.exe
-
Size
94KB
-
MD5
67b06e231ede7624a1521bf001e1a220
-
SHA1
aa0a9a4f2be51f2906f63fb19fedd885705d0f56
-
SHA256
8008947e567bf61aea5ed4be94f1d0766a903e3cb64522be854dfad58bea8e09
-
SHA512
64db4c184a7a3b45c75b018dc8016c03605a97ca7fc9cc43aa5fd64f96f23307de7633bc03f91122ab10fd039f5975da48d298b973eb55809206e836646738c6
-
SSDEEP
1536:GtPtlChZHNnK1MJTmvuzazpZl4hTPnmOIP+LNPSP2avOauSZ1LV5E:Gdtl8NnwMJTm/9kTPnmOg+LNQ2aJui1s
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
8008947e567bf61aea5ed4be94f1d0766a903e3cb64522be854dfad58bea8e09.exedescription pid process Token: SeDebugPrivilege 1760 8008947e567bf61aea5ed4be94f1d0766a903e3cb64522be854dfad58bea8e09.exe