173ba5d0bfde76ac54ddc47f1a5f74ff54ea9967085e88232672088aed8a58c7

Analysis

max time kernel
28s
max time network
31s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
27/05/2023, 19:59

Target

Fluxus V7.exe
Size

2.8MB
MD5

18ee2d08255c5735f7d1076b3dfed388
SHA1

b7410284e406c6d9eb0b01f297d8f7536bbe8ba4
SHA256

173ba5d0bfde76ac54ddc47f1a5f74ff54ea9967085e88232672088aed8a58c7
SHA512

b0c0f22d6fc82650ea4fd882fddfd6154360f7a9750878e0ddf79c8d991ed29810d715a65e019fb388b94286eb3905e1b74324f331fdc7ddeaca9ea39edbec83
SSDEEP

49152:4FvJA52joYoYdnZOYoB1oAzOBC5tMqiNHw+W7SCwGpv8d:CXoYoYdnZOYosHTgBk

Score

1^/10

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	1344	Fluxus V7.exe

C:\Users\Admin\AppData\Local\Temp\Fluxus V7.exe
"C:\Users\Admin\AppData\Local\Temp\Fluxus V7.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1344

memory/1344-54-0x0000000000180000-0x000000000044E000-memory.dmp

Filesize
2.8MB

Download
memory/1344-55-0x0000000004360000-0x00000000043A0000-memory.dmp

Filesize
256KB

Download
memory/1344-56-0x0000000000510000-0x000000000051A000-memory.dmp

Filesize
40KB

Download
memory/1344-57-0x00000000008E0000-0x00000000008E1000-memory.dmp

Filesize
4KB

Download
memory/1344-58-0x0000000004360000-0x00000000043A0000-memory.dmp

Filesize
256KB

Download
memory/1344-59-0x0000000004360000-0x00000000043A0000-memory.dmp

Filesize
256KB

Download