Resubmissions

26/10/2024, 20:07

241026-ywcjjaybnd 1

26/10/2024, 20:06

241026-yvvzgswlgj 1

26/10/2024, 20:06

241026-yvjlfsybmd 4

26/10/2024, 20:05

241026-yt9fgswlfn 1

26/10/2024, 20:04

241026-ytcrhsyhqr 1

26/10/2024, 19:16

241026-xytp6avrgj 8

01/08/2024, 00:01

240801-aa84lszhpn 10

Analysis

  • max time kernel
    1724s
  • max time network
    1151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/10/2024, 20:06

General

  • Target

    KMS_VL_ALL_AIO-master.zip

  • Size

    12KB

  • MD5

    01d4bc416d709adb626fefac8d2a0159

  • SHA1

    74095ff6e58fa3b70dfa5f455030f24e8be172a6

  • SHA256

    228bb528dc4202ca0ee4b88643607d2a5f13ed506b458f78fb9c7cf1637ba67c

  • SHA512

    c723af9eb11c82fbcb606b26bededc957854e121c27bcdbdde9343e257ea29f0270673589eb035b07b13fadfc16e6c4b6400d668fa7f4d9d20c47cb49af6e09d

  • SSDEEP

    192:b8Mmw2Vs5cpm0gkUyvwq/YkbZp5TbzBl70xWRsySpPIDoz4i/fCvyCQloZYGc92d:QVbCEh/70cpShMoU8bbL92+hVCCY

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\KMS_VL_ALL_AIO-master.zip"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:1332

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads