Analysis
-
max time kernel
119s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
14-11-2024 00:27
Behavioral task
behavioral1
Sample
8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9.exe
Resource
win7-20240903-en
1 signatures
120 seconds
Behavioral task
behavioral2
Sample
8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9.exe
Resource
win10v2004-20241007-en
1 signatures
120 seconds
General
-
Target
8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9.exe
-
Size
1.8MB
-
MD5
03e83ffaf2ff4d86666f1d403831388a
-
SHA1
29a63447ebcd67e4ba75e07dd611bb4b7dbd3c54
-
SHA256
8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9
-
SHA512
03f4e312851bb4380b96a6ecbea48883630ad05630f2d51c964b7ba6fed1b86a7d9258776f6184d3327231532f920a0c69f97a400f2fab184c3531ba7d780e0d
-
SSDEEP
49152:GezaTF8FcNkNdfE0pZ9ozttwIRxj4c5yOBZnQbZLvitOq:GemTLkNdfE0pZyb
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes:
8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9.exedescription pid Process Token: SeLockMemoryPrivilege 2364 8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9.exe Token: SeLockMemoryPrivilege 2364 8f1c3d5a81b95fd057c17e9b32917a42905a590508da172394aec8d8dc38d9a9.exe