Resubmissions
15-10-2024 15:36
241015-s1zlzasdkc 1001-07-2024 18:32
240701-w6yteawhmq 1001-07-2024 14:52
240701-r82wmaxdnd 1001-07-2024 14:52
240701-r8syqa1dpp 1011-03-2024 21:22
240311-z8dsssgg58 1001-09-2021 13:18
210901-5bmxjspa5s 1001-09-2021 13:04
210901-te4btfspqa 1001-09-2021 05:12
210901-4wnkwm1p3j 1031-08-2021 21:47
210831-41rp97dma2 1031-08-2021 19:51
210831-359awwatje 10Analysis
-
max time kernel
1340s -
max time network
1125s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
15-10-2024 15:36
Behavioral task
behavioral1
Sample
setup.rar
Resource
win7-20240903-en
windows7-x64
3 signatures
1800 seconds
Behavioral task
behavioral2
Sample
setup.rar
Resource
win10v2004-20241007-en
windows10-2004-x64
2 signatures
1800 seconds
General
-
Target
setup.rar
-
Size
5.1MB
-
MD5
829ef56bfd2817a87cdd285c627f6fbc
-
SHA1
28fd7e95ceef12024023c587fb2423a4dd18790f
-
SHA256
1cd649ea4273fd977b6a350bfe8f3b62f1d0aee1408b9966aa3d6ad39ba5af6a
-
SHA512
789eb1a298d09018050809a5b0ff55a64b51cbc9de7dd6b480463b32508b8ece41dd337b1deb915d993399087ba757188b1ee3b9d217f64c223de26ff2e29a0b
-
SSDEEP
98304:KofvPTvP9vPGvPAvPpvPXvPdvPlvPavPSvPsvPAvP/vP7vPGvP2vP1vP9vPavPSZ:KofvLvFvuvYvRvvvlv9vyvavUvYvXvjR
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 4596 7zFM.exe Token: 35 4596 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 4596 7zFM.exe