Analysis
-
max time kernel
105s -
max time network
121s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
13-11-2024 23:40
Behavioral task
behavioral1
Sample
d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe
Resource
win7-20240903-en
1 signatures
120 seconds
Behavioral task
behavioral2
Sample
d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe
Resource
win10v2004-20241007-en
1 signatures
120 seconds
General
-
Target
d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe
-
Size
1.5MB
-
MD5
e1676b726d4bb4b582716a0439bda6e6
-
SHA1
b25155262d4f16f220ab84b4b233d10f0afd8cec
-
SHA256
d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4
-
SHA512
0bb680233e70032cfa81180d49f9e9f9b2315049e627a8e55f281ba8a5755fedcae1729e78c3c7491651adb08d090033c2ea9663372560fc0829ff90c6a44732
-
SSDEEP
49152:GezaTF8FcNkNdfE0pZ9ozttwIRx2T9va4fWpagY:GemTLkNdfE0pZyI
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exedescription pid Process Token: SeLockMemoryPrivilege 4424 d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe Token: SeLockMemoryPrivilege 4424 d60883b001f409bf47948fb8437618dd7c46e255dbd1ddc3b1e9b9f3edc0fed4.exe