Resubmissions

09/11/2024, 22:47

241109-2qv1gatgkd 7

09/11/2024, 22:41

241109-2mcpqatfnb 3

Analysis

  • max time kernel
    1337s
  • max time network
    1169s
  • platform
    windows10-ltsc 2021_x64
  • resource
    win10ltsc2021-20241023-en
  • resource tags

    arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system
  • submitted
    09/11/2024, 22:47

General

  • Target

    #Set-𝐔p-8597__Pa𝐒ŜwOʀDS𝕊!#.rar

  • Size

    22.7MB

  • MD5

    2b2edc5d7171915e541094b849d41cbd

  • SHA1

    7619adc719ffcdcb88657ca691ce3a7d624a9f71

  • SHA256

    2ea4e40753e96cb0961c44167a6b656eb79a400b4ae4e5cd94465cef670e9e05

  • SHA512

    cafc628d99a5472fbbe1a0f84d79f42a0eaf3f1ec2e879498b2e823bfc3e08f734e0fe31875c6f646e8004c551d192209f4cdfe5c974a780cf8da14cb8540ceb

  • SSDEEP

    393216:BxByI/m/kvcrjgXqnCzpN6rhUVPkS3KmrVBDKPtTjJLwCk3NR:9/mv8Xqshv3nMJLwCA

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\#Set-𝐔p-8597__Pa𝐒ŜwOʀDS𝕊!#.rar"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads