Analysis
-
max time kernel
1337s -
max time network
1169s -
platform
windows10-ltsc 2021_x64 -
resource
win10ltsc2021-20241023-en -
resource tags
arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system -
submitted
09/11/2024, 22:47
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
#Set-𝐔p-8597__Pa𝐒ŜwOʀDS𝕊!#.rar
Resource
win10v2004-20241007-en
13 signatures
1800 seconds
Behavioral task
behavioral2
Sample
#Set-𝐔p-8597__Pa𝐒ŜwOʀDS𝕊!#.rar
Resource
win10ltsc2021-20241023-en
2 signatures
1800 seconds
General
-
Target
#Set-𝐔p-8597__Pa𝐒ŜwOʀDS𝕊!#.rar
-
Size
22.7MB
-
MD5
2b2edc5d7171915e541094b849d41cbd
-
SHA1
7619adc719ffcdcb88657ca691ce3a7d624a9f71
-
SHA256
2ea4e40753e96cb0961c44167a6b656eb79a400b4ae4e5cd94465cef670e9e05
-
SHA512
cafc628d99a5472fbbe1a0f84d79f42a0eaf3f1ec2e879498b2e823bfc3e08f734e0fe31875c6f646e8004c551d192209f4cdfe5c974a780cf8da14cb8540ceb
-
SSDEEP
393216:BxByI/m/kvcrjgXqnCzpN6rhUVPkS3KmrVBDKPtTjJLwCk3NR:9/mv8Xqshv3nMJLwCA
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 2088 7zFM.exe Token: 35 2088 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 2088 7zFM.exe