Analysis
-
max time kernel
134s -
max time network
207s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
25/08/2024, 08:58
General
-
Target
ag23r1.zip
-
Size
145KB
-
MD5
725f63b3c38d360c344c77133aca4fad
-
SHA1
ce2608487a5c5442bbe37cc8b577308184afef28
-
SHA256
afe0da88fca328449f1061f2154c7b4a4a3de43bdbaaacdd8f8c7e6918d3bcbc
-
SHA512
aa6c071bef11c4f565565b505a0c6127dcd1c22b9c45ec5f02e5e175f573fdd470e25a800e722b1354d397b15c03b61a1f4bf235779d2d46ea0db40edb349d5b
-
SSDEEP
3072:4FFnj9s8DYvnoojSHEa2O8X0yUL8FEGbEGMYwy3m1mqDjV4:ej79dumAqVFUCjC
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 8 IoCs
-
Suspicious use of FindShellTrayWindow 2 IoCs
Processes
-
C:\Windows\Explorer.exeC:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\ag23r1.zip1⤵
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵
-
C:\Program Files\7-Zip\7zG.exe"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\ag23r1\HITMAN 3 v3.10-v3.160 Plus 13 Trainer\" -an -ai#7zMap26255:154:7zEvent123561⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
-
C:\Program Files\7-Zip\7zG.exe"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\ag23r1\HITMAN 3 v3.10-v3.160 Plus 13 Trainer\_\" -spe -an -ai#7zMap28850:154:7zEvent149121⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow