Analysis
-
max time kernel
105s -
max time network
116s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
14-11-2024 00:25
Behavioral task
behavioral1
Sample
2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065.exe
Resource
win7-20240903-en
1 signatures
120 seconds
Behavioral task
behavioral2
Sample
2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065.exe
Resource
win10v2004-20241007-en
1 signatures
120 seconds
General
-
Target
2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065.exe
-
Size
1.8MB
-
MD5
ea9720ae3cb7803f31133a9f120f5438
-
SHA1
1e6a95283a20f68a69587f400e81e8ac995793f4
-
SHA256
2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065
-
SHA512
414984d696a71fa6194b6c3705f29f712d25500dd204d5c5a205d38104a856f2cdcddf4e2881919b880ed93b5e5c732ce07804f4dca8492bb98341fe27471e37
-
SSDEEP
49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQbZLoQ6:GemTLkNdfE0pZyT
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065.exedescription pid Process Token: SeLockMemoryPrivilege 2460 2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065.exe Token: SeLockMemoryPrivilege 2460 2fd18c1b0ce1f2511612686e7911affc12dc2156e8dfae8cddfd46abe2299065.exe