70c11ab71f1dab1bfc35150bc81fb04c2b868be9e2983403772724bd18fd58b6 | Triage

Analysis

max time kernel
0s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
22/02/2024, 18:37

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

0day.exe
Size

19KB
MD5

9e34f8148911e49c5725ef34c46b3a15
SHA1

ff6214d85921500ba36f44d0a13512230ad965df
SHA256

70c11ab71f1dab1bfc35150bc81fb04c2b868be9e2983403772724bd18fd58b6
SHA512

cbb27e83f6ada47b121075c342955d388a5d4eec1d637b26b3aae93bf77d08ad1d3ff55fcbaf2dd55b50849885607fbc758fd0b641d33e4618b2d3c0961a3b24
SSDEEP

384:5OZdYxj/b+u/mBuWdA4q0nJyJksQjHTtdnoOgWV:ewjtradHn86jTzoO3

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeShutdownPrivilege	1412	0day.exe

C:\Users\Admin\AppData\Local\Temp\0day.exe
"C:\Users\Admin\AppData\Local\Temp\0day.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads