Analysis
-
max time kernel
150s -
max time network
153s -
platform
windows7_x64 -
resource
win7-20231023-en -
resource tags
arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system -
submitted
07-12-2023 01:44
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Avviso di Pagamento_ SEPA_Unicredit Bank_Pdf.exe
Resource
win7-20231023-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
Avviso di Pagamento_ SEPA_Unicredit Bank_Pdf.exe
Resource
win10v2004-20231130-en
windows10-2004-x64
9 signatures
150 seconds
General
-
Target
Avviso di Pagamento_ SEPA_Unicredit Bank_Pdf.exe
-
Size
192KB
-
MD5
c83e8d01fa4bb2a29de8757bab77c261
-
SHA1
fd996e799182968527ae6bbae5949f6970e41940
-
SHA256
70599fe914edfb27f40868d4cab51383791548e119d48ea1cf2748362a623817
-
SHA512
be57ca047c5d909c7d792ef4c21936988da5f5a0667f7c5d89cdfa31f34579fd3dafb04f0a0d4054b7202cfdc4a8671157e31749c20276d0e40896f9b135186a
-
SSDEEP
3072:vgjT7lyimAFECy61CVJ1o+AeBImCytphGqsdo6pBA:vgH7lyim7CED5AeOdyqdo6p
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
Avviso di Pagamento_ SEPA_Unicredit Bank_Pdf.exedescription pid process Token: SeDebugPrivilege 1920 Avviso di Pagamento_ SEPA_Unicredit Bank_Pdf.exe