Analysis
-
max time kernel
119s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
06-04-2024 08:49
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Document_BT24PDF.exe
Resource
win7-20240221-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
Document_BT24PDF.exe
Resource
win10v2004-20240226-en
14 signatures
150 seconds
General
-
Target
Document_BT24PDF.exe
-
Size
822KB
-
MD5
7c1be3bb77ce7fecad1e6d142db95fbf
-
SHA1
63c170cebb0e1ad1104897e8837bf14eb5c08cbd
-
SHA256
187cdd0639eb10e50f060de4cb487920a65628104f66a0aeb12c5404a55fe298
-
SHA512
74df0f90d3d92bd0993e4d519105d327c725cf4c10bddb57cbf6a87f10cd7ef2081830813d3ca2b3a9c80560f67808b13d7c5d3c24535d1ed4f45b4ceb9037f2
-
SSDEEP
12288:mecSSWLU423D7R+5vmVfa4NQDOYyTjTtmJzOHZ+vuF1HXSQoro36nzhdGjKqAXzC:4zWL67R+unuDJ+ssHgu7CQoW6NGqmIS
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
Document_BT24PDF.exedescription pid process Token: SeDebugPrivilege 2756 Document_BT24PDF.exe