Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system -
submitted
13-11-2024 23:59
Behavioral task
behavioral1
Sample
0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe
Resource
win10v2004-20241007-en
General
-
Target
0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe
-
Size
1.3MB
-
MD5
8aee8c7e9cf541e2255ac130d5ab82a3
-
SHA1
51101455cf8f0e8b0c780dbef90232f0330ac4d4
-
SHA256
0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66
-
SHA512
90e937c111fde6b9635be87c71d129114b022c6f4c2f1b8ab47a4ecce96aeab0d64c461f0cb67a6b0a11bb5d9a13e04bf476c4cb62b9f0d5666df33f62c57a30
-
SSDEEP
24576:GezaTnG99Q8FcNrpyNdfE0bLBgDOp2iSLz9LbpwlKenszbWKDNEm/5ph7NAmE25u:GezaTF8FcNkNdfE0pZ9ozttwIRxHTi
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exedescription pid Process Token: SeLockMemoryPrivilege 2704 0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe Token: SeLockMemoryPrivilege 2704 0321c31f365f5109812d4c7fb9afe178cd394f9bd426a7c52119b6c90d59eb66.exe