7b88a884e8eeb135cde2408d1f7d9c7ad4588175207a781f88c6e01a1efa207a

Analysis

max time kernel
149s
max time network
150s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
25/02/2024, 12:51

Target

quic_hide.exe
Size

7.0MB
MD5

1476b7d51dd57d9220b7467450e979f3
SHA1

b5ca5c1fb263a0c4ca9a570b78f74e0fea6764cc
SHA256

7b88a884e8eeb135cde2408d1f7d9c7ad4588175207a781f88c6e01a1efa207a
SHA512

28da1f96b02066a33e83b9cdc6bd3afca4b17afcf1560f71ba5e4edbfba396310fa390a57986abcf0028624eaaf98fd63466e29b6d5523014736f18e2828c2ca
SSDEEP

49152:/yUOm/9TMrb/TovO90d7HjmAFd4A64nsfJZOClHaAO6+zlqNhR1L8PTfUTF+rFNq:V9YOz2L8r4kmkKLuIkwZVEUaXFji

Score

1^/10

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2068	quic_hide.exe

C:\Users\Admin\AppData\Local\Temp\quic_hide.exe
"C:\Users\Admin\AppData\Local\Temp\quic_hide.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2068