Analysis
-
max time kernel
69s -
max time network
72s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
19-03-2023 01:53
Static task
static1
Behavioral task
behavioral1
Sample
out_int.exe
Resource
win7-20230220-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
out_int.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
out_int.exe
-
Size
18KB
-
MD5
d7c582afe33af700119cdb818a9e3a68
-
SHA1
70cd5f7a8c03c3f2fb0b7b94a5300f8a839325f4
-
SHA256
89d3cc0572e4ba6a9493ba1bde6bd1e7e5bc8137ffee66f7d97ca205f2400b4c
-
SHA512
8702aa64db377ebff1d787769193477091d09a7e928f0c5bf70fb29d8a462dd3ece88e9818341b9f178880d4ce75fdfb4c147a3bc330fb5651af4b2699ae3b06
-
SSDEEP
384:Ocf1VBASc76wQ/J1O95acb43vK4oTb7Vnw/KY/4wU/jKXuQT:51UUBcfVnakrKXHT
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
out_int.exepid process 1520 out_int.exe 1520 out_int.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
out_int.exedescription pid process Token: SeDebugPrivilege 1520 out_int.exe