Resubmissions
16-11-2024 22:11
241116-133emstras 10Analysis
-
max time kernel
121s -
max time network
127s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
-
submitted
16-11-2024 22:11
General
-
Target
XWorm-5.6.7z
-
Size
39.5MB
-
MD5
47dbba87313a28dd9fc539453def2600
-
SHA1
75e0704809b47b2c5f4a24b2f319a8d6cc054456
-
SHA256
9c63eaf9641e17748f12a732afb95f60273bee899102cfb414852af08b8413fd
-
SHA512
1ce8073cda28a741b1e0269398c89f73dfb83675979210f6957832f27ee91d68e35291475da2a81a15c11b96e076440f03b8d4c78f3b4c5b4d585f14e943f9b2
-
SSDEEP
786432:7wr253dsf++31wwoPTpjN55v3viFRboRpxaSEBaGEZ6pgbD+4aQ3Ny8D7sgKRte:k253dsW+3iJ5J3v6YpxH2EZAgbD+XQ8c
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\XWorm-5.6.7z"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow