Overview

overview

10

Static

static

1

Unlock_Tool_2.4.rar

windows7-x64

1

Unlock_Tool_2.4.rar

windows10-2004-x64

10

Analysis

  • max time kernel
    9s
  • max time network
    2s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    18-10-2024 20:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Unlock_Tool_2.4.rar

  • Size

    43.5MB

  • MD5

    f0010bb07a1d8f0b9e1ca4854dfba35c

  • SHA1

    e36a3878ae1075484c415bdb4fd737d584c6370a

  • SHA256

    c19f7b69713bde5ae56c91147ab1236b03220a81d939726aa9e75fd297559428

  • SHA512

    2c96c05641211aebd2339c1e39514fc079cfe1161e9e2e54e0550a13d01a9af87c845fc67fe69881314036e4cf25a9e6fdfbf5a1ee8ba8611d0615dbd8a244f7

  • SSDEEP

    786432:+DJt2vY5B9Q7r2SsGmu6wWIiO3sQ+aztolqqroZtKcsobkc3O5v+xGbyh1t:IP2vY5WsEKhOZ6lFoPJsol3O52Ebyh1t

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\Unlock_Tool_2.4.rar"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:2380

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads