0dd4ec8e1a4e4f4589dd9b5d75005c972bac3aa5da8c8b28ca9d001cd08972b8 | Triage

Analysis

max time kernel
13s
max time network
0s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
25/06/2024, 17:13

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

BSOD2.exe
Size

181KB
MD5

84be164a5f7e37c9f44bcb7d8f64b966
SHA1

af9602d860c7224c91958ca7cd696aa6741d5640
SHA256

0dd4ec8e1a4e4f4589dd9b5d75005c972bac3aa5da8c8b28ca9d001cd08972b8
SHA512

ea32d3b3698e8b5df83eaba1395d5c6fe7ad477d3a62053c31c5d83bb720c0eb010d6635957e5f68c23e1aa6d41ec5597c9eee3fcfe8c6df382b0eeb7089f8f0
SSDEEP

3072:Xgl+WBjfh5m/ssPJaR+8TGxpcm2s4gpch2IAOH6JBjOAg0Fujop4e0Ol55Me:XgXJM/ssh4GFv4tcmAOZOlHMe

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeShutdownPrivilege	2424	BSOD2.exe

C:\Users\Admin\AppData\Local\Temp\BSOD2.exe
"C:\Users\Admin\AppData\Local\Temp\BSOD2.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads