Analysis
-
max time kernel
139s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
25/12/2023, 01:27
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2070dfe8450807e52558f315c0b32aa0.exe
Resource
win7-20231215-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2070dfe8450807e52558f315c0b32aa0.exe
Resource
win10v2004-20231215-en
1 signatures
150 seconds
General
-
Target
2070dfe8450807e52558f315c0b32aa0.exe
-
Size
495KB
-
MD5
2070dfe8450807e52558f315c0b32aa0
-
SHA1
8d633dde10c706ff60a6d2b2383c0e5586b7b8ca
-
SHA256
7df03f5569d9a80eae365d620b5001c2ce864a771cfa4c3965962571d5411330
-
SHA512
0d8b476fa5525b1b113ca4041e82e95a329c038719d59b92184a0eb525f44b97e9ba31416734af3073c5f46aeaca9a40e61b4315d923dfcaca0954b67655e2bc
-
SSDEEP
12288:PFk2qTTPW4MSv/WK089BxVsCCFHerBAMx1SofGIItmuaCphVmmARY:r0jW4dw8TjsCiHoBr4IuCCdFz
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: 33 1788 2070dfe8450807e52558f315c0b32aa0.exe Token: SeIncBasePriorityPrivilege 1788 2070dfe8450807e52558f315c0b32aa0.exe