Analysis
-
max time kernel
105s -
max time network
113s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
13-11-2024 10:00
Behavioral task
behavioral1
Sample
99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25.exe
Resource
win7-20240903-en
1 signatures
120 seconds
Behavioral task
behavioral2
Sample
99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25.exe
Resource
win10v2004-20241007-en
1 signatures
120 seconds
General
-
Target
99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25.exe
-
Size
1.7MB
-
MD5
a9d2cfcf2a5a20fa01965ad5dad138d3
-
SHA1
5db308e2f7ba4f93eef6539b9ebe3bded1372e53
-
SHA256
99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25
-
SHA512
c93f0f672b46989aa226aa107f2fe94e7bab3e36c0fc63e16b45ad5884f9a56a58cbef305be3da7d16ea2ee4d69a624754bf4d60e2f92d2344e20def0d63bcdb
-
SSDEEP
49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQM:GemTLkNdfE0pZyB
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25.exedescription pid Process Token: SeLockMemoryPrivilege 3324 99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25.exe Token: SeLockMemoryPrivilege 3324 99eb9bea6f8482962a25b070b612f41c9f11de6dc8a318a5aed1e41333bc7b25.exe