Overview

overview

10

Static

static

3

220913-j71...ed.zip

windows11-21h2-x64

1

7943496156.zip

windows11-21h2-x64

1

7508939c07...13.exe

windows11-21h2-x64

10

7d14b98cdc...b0.exe

windows11-21h2-x64

10

Resubmissions

04/12/2024, 11:29

241204-nlnhyayram 10

04/12/2024, 11:07

241204-m8g41atlg1 10

Analysis

  • max time kernel
    449s
  • max time network
    450s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    04/12/2024, 11:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7943496156.zip

  • Size

    720KB

  • MD5

    4ec1a76f3ce2412e06b484b3555d61b8

  • SHA1

    86c121b50a0793525dacc66db93243481af58c58

  • SHA256

    93fb21a9c51c0dbccb7e0bd5b4fad92061f540f3128ed2f9a248950c29f2f757

  • SHA512

    96353d22f26165e2eadee302d435d6069c0fd1dd20d07fe217d481ee8402d19689ca13e596b02be12070304ae4600d9d6a7a93bdd5a7b69519e8245e276702d5

  • SSDEEP

    12288:UEsXBmIQCdhuPidl4hE/rKX6i3FgnlcuUbemefeKMjMZzzlZKOVyU882X:UEsRmIBhus2QKXB6Bmaetj+zzeOl88e

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\7943496156.zip"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:4900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads