Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system -
submitted
13-11-2024 09:48
Behavioral task
behavioral1
Sample
27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3.exe
Resource
win7-20241010-en
1 signatures
120 seconds
Behavioral task
behavioral2
Sample
27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3.exe
Resource
win10v2004-20241007-en
1 signatures
120 seconds
General
-
Target
27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3.exe
-
Size
1.8MB
-
MD5
a1e8d5948ae927a04f947e61032dbc12
-
SHA1
2dacc80d273e0824aa7ba36b43da98bacc0e5847
-
SHA256
27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3
-
SHA512
4647d4b1c0af2cb519ec8ab0ae194b8e5b114814adbe5cf14aaac9167cd9a3470b81307c0ffdc084e95979826c21345818ccdfd6e21b84b74826928d7477f4ad
-
SSDEEP
49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQbZLoQiff:GemTLkNdfE0pZy/
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3.exedescription pid Process Token: SeLockMemoryPrivilege 2224 27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3.exe Token: SeLockMemoryPrivilege 2224 27b5e67a03c9dc6c260a829fb29513b113d474e8a38695bf9541df72e398c5c3.exe