Analysis
-
max time kernel
18s -
max time network
20s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
02/10/2024, 20:50
Static task
static1
Behavioral task
behavioral1
Sample
pvn6ajjl8nf.jar
Resource
win7-20240903-en
4 signatures
150 seconds
Behavioral task
behavioral2
Sample
pvn6ajjl8nf.jar
Resource
win10v2004-20240802-en
3 signatures
150 seconds
General
-
Target
pvn6ajjl8nf.jar
-
Size
2.2MB
-
MD5
8e48fc3bda0bc899ba7c38b5bd2ac165
-
SHA1
bff45691858d8278b55b46af99ab0b5890564e53
-
SHA256
648ca4f9c2964bea3e91685a32e0381c803d648cc358b39ae4071fd3be77fed6
-
SHA512
a807a35eee990b75d85417bdddc3aabbe1275319ccd982c08b7bd929eb175992b96d7728a4615885b1368c9693550968a899b2d308fc8a0c9c3b1420ad7bc5d0
-
SSDEEP
49152:J1dxsLIha5XhNN9gD3b+V9JqG+XFpJ7JUZRlwxBRR+IMNT58:JZJhhb+Xqd1DJmR6xHlMU
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 18 IoCs
pid Process 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe 1728 java.exe -
Suspicious use of AdjustPrivilegeToken 64 IoCs
description pid Process Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe Token: SeDebugPrivilege 1728 java.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 1728 java.exe 1728 java.exe