Analysis
-
max time kernel
91s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
21-11-2024 00:40
General
-
Target
$PLUGINSDIR/app-64.7z
-
Size
99.5MB
-
MD5
6f045e361a674060335d1742e193a430
-
SHA1
58b35b8ee4ccd33309285b4beafcaf5ece173796
-
SHA256
39a25510c144748406af7d97c249e2c52b9bb62b14b1b640c9e77bdb71140ffd
-
SHA512
9b400b32ca5c729a36db600a4a8c866437e2fdc40745bd99fdbb2ff464fbc2a5a229caee9da8f0eb6698040eb22706b40f94860452c3ef71e9c27053cb1fbdb9
-
SSDEEP
1572864:J4opqebTEWRCrJnR0sD7GHv9xFJgHaXOTqPLk8rDbDkkagQkpIEDG5oiP2Wo6G:JHlb7QJRnDQzFJsNH8nkkagQfroU2RJ
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\app-64.7z"1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow