Analysis
-
max time kernel
146s -
max time network
149s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
18-06-2024 15:38
Static task
static1
Behavioral task
behavioral1
Sample
22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe
Resource
win10v2004-20240508-en
General
-
Target
22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe
-
Size
369KB
-
MD5
b14219b407f8e7157630be68efb1a2f9
-
SHA1
ecf28b415ba7268a4833199ecbe1709c0865fbc4
-
SHA256
22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38
-
SHA512
4b0fb8f2800b8a70e116725e4fa37444799e0f3b03938a4610f1595ab0cb1bc35d494515bf73cc07c03d4843cbdccd86006e36ba34325cf6b49057e46662cd75
-
SSDEEP
384:eOznT8nqqXWud5oApXzn06CjFN8P3YsU6fCWYA8S/hs/EasofOh/Q0RbnqMGt/Ev:JznTEqqXWusgjdM8sSct9ApqNSb
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes:
22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exedescription pid process Token: SeDebugPrivilege 2284 22b76fd4d712a0717c2414df1d3b0ea8bcec2be55e99d281c691aeee660a1c38.exe