528214feff8c5fe6eae4ab60337adf43cffa1eec073f36d5f476e0a8ae357f7c

Analysis

max time kernel
119s
max time network
121s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
25-07-2024 12:26

Target

CSGOChecker.exe
Size

6.7MB
MD5

96b72e630d22ab2abb41e180c5e40a96
SHA1

68bc75409e663a5f72bd252567a5b1ac6a070f71
SHA256

528214feff8c5fe6eae4ab60337adf43cffa1eec073f36d5f476e0a8ae357f7c
SHA512

6c91c65fc0023bdf3c33cdda4f35a1e656d962307904fb1b0ca85bd4956dcf057d9350260df35177068f7f790f8f466debe9b514235831a95991aadf4712157b
SSDEEP

98304:oOnU6kZ5lE8edjzoa7gfXmnMz/fgT+GgZDscTJ5pfrv4w0Nc+wJ1:oOU6kZ50z7g1zApgZwcF5pzv4wlH

Score

1^/10

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2868	CSGOChecker.exe

C:\Users\Admin\AppData\Local\Temp\CSGOChecker.exe
"C:\Users\Admin\AppData\Local\Temp\CSGOChecker.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2868

memory/2868-0-0x000007FEF65F3000-0x000007FEF65F4000-memory.dmp

Filesize
4KB

Download
memory/2868-1-0x000000013F1C0000-0x000000013F86A000-memory.dmp

Filesize
6.7MB

Download
memory/2868-2-0x000007FEF65F0000-0x000007FEF6FDC000-memory.dmp

Filesize
9.9MB

Download
memory/2868-3-0x000007FEF65F0000-0x000007FEF6FDC000-memory.dmp

Filesize
9.9MB

Download
memory/2868-23-0x000007FEF65F0000-0x000007FEF6FDC000-memory.dmp

Filesize
9.9MB

Download
memory/2868-36-0x000007FEF65F3000-0x000007FEF65F4000-memory.dmp

Filesize
4KB

Download
memory/2868-37-0x000007FEF65F0000-0x000007FEF6FDC000-memory.dmp

Filesize
9.9MB

Download
memory/2868-38-0x000007FEF65F0000-0x000007FEF6FDC000-memory.dmp

Filesize
9.9MB

Download
memory/2868-39-0x000007FEF65F0000-0x000007FEF6FDC000-memory.dmp

Filesize
9.9MB

Download