Analysis
-
max time kernel
150s -
max time network
153s -
platform
windows7_x64 -
resource
win7-20230712-en -
resource tags
arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system -
submitted
03/08/2023, 07:04
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Refbkefruvt.exe
Resource
win7-20230712-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
Refbkefruvt.exe
Resource
win10v2004-20230703-en
8 signatures
150 seconds
General
-
Target
Refbkefruvt.exe
-
Size
587KB
-
MD5
a58ba28556b22b42763f7e250fb0a4ee
-
SHA1
1736c40a3405568ea7eb99626fc6787225081eac
-
SHA256
0ebd3bc3035a85c16d9856235d470598e247755fb4b3744c32ac6bab6c4d311f
-
SHA512
e2061c4c2ab471f4f6d7c9af420cb821f28b640f3c8b0a20fa7d994e36c0a1996922f84cc471e26518eeba3bbe059cb861371afb5c612327be9a9706f7f0abf0
-
SSDEEP
6144:hWsTS0AV13ha4LtgdA8ICUNV9xIm683GcS+/ccP+zwrC3vGIETPm3zBzPH:k3ltga2UNKsFSJcPu
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 2084 Refbkefruvt.exe