Analysis
-
max time kernel
150s -
max time network
154s -
platform
windows7_x64 -
resource
win7-20230831-en -
resource tags
arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system -
submitted
07-10-2023 00:47
Static task
static1
Behavioral task
behavioral1
Sample
14a10ef4f604c227bfa74bae7dd4b0ea95e27f0d1711080cd31efe6ab1141e95.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
14a10ef4f604c227bfa74bae7dd4b0ea95e27f0d1711080cd31efe6ab1141e95.exe
Resource
win10v2004-20230915-en
General
-
Target
14a10ef4f604c227bfa74bae7dd4b0ea95e27f0d1711080cd31efe6ab1141e95.exe
-
Size
315KB
-
MD5
999d17f66b6e237453ad899d94fb6998
-
SHA1
fec99ee5b5e7d1e1f13ee69208292921a843a0bd
-
SHA256
14a10ef4f604c227bfa74bae7dd4b0ea95e27f0d1711080cd31efe6ab1141e95
-
SHA512
ba8e66801fcf49e6e5bcd74b03760f35d13060fee0c1e66daa8117976f8ae6e995acfc9208c44679425ba06b1d9bce86fb22d7ec867cc71ab7cf291cd811d99b
-
SSDEEP
6144:UD0AJsZbY+kdRpmXmfFgjYEIyv49iVt//Vzo+F0w3qmsTcKSK:K0AJ1+8RpmXmfFgjYEIyv49KnB5fiLS
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
14a10ef4f604c227bfa74bae7dd4b0ea95e27f0d1711080cd31efe6ab1141e95.exedescription pid process Token: SeDebugPrivilege 2468 14a10ef4f604c227bfa74bae7dd4b0ea95e27f0d1711080cd31efe6ab1141e95.exe