Analysis
-
max time kernel
361s -
max time network
363s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
02-12-2024 19:05
General
-
Target
Xworm-V5.6.zip
-
Size
24.5MB
-
MD5
5a571707a251e4d8e699c60ff96ae47c
-
SHA1
0f152472dc47d332b726feb39739118508c36d92
-
SHA256
43f5eb9bcb505db65f82a064c313e2ead7d6556285a1ad7989e0af5e465770e4
-
SHA512
8ca1482abacee8cb92146514a83e32185e7c4c169c59634f60e82b81db24f9b87284ee8d45b6a3528339bdce83a8021fdccca64d832b169d5d1cbd3d168b8b37
-
SSDEEP
393216:pyakq5XFeuBc9Q+Fnqsg5q49DC83v7kjAJgAKbqybloQXo50Ko+Y2ToxY3:pyy5XDBYQwqsGLkjiKp1o5Ho+B
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\Xworm-V5.6.zip"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow