Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system -
submitted
10-12-2024 18:41
Behavioral task
behavioral1
Sample
SilenceTool ( paid ).rar
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
SilenceTool ( paid ).rar
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
SilenceToolSetup.exe
Resource
win7-20240708-en
Behavioral task
behavioral4
Sample
SilenceToolSetup.exe
Resource
win10v2004-20241007-en
General
-
Target
SilenceTool ( paid ).rar
-
Size
8.2MB
-
MD5
033bfeba1a094de252c8236e0d82bf95
-
SHA1
ab9c673a5496494e94b818b5314305c85467b92e
-
SHA256
7e551e42b6bafb333c347e4abd98b27ab240d7418728b84350c4ecf01d4b9628
-
SHA512
55d7c0bf349be07ad90041633bbe4cf59923076d2fa27eb4e15f662c664f66f0adc5a3b1f8461a366182d2ae1e6a7d459a68d90b66c8d6635f2a8b1b60c51667
-
SSDEEP
196608:X/+B8FQ2GKz4P0b56DL4Ux1ZFIXeqZ05NQUI9S4/5TUE9cCpa:XmBSQ2GKz4m6wm1L8f5UI7/JwKa
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 1304 7zFM.exe -
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 1304 7zFM.exe Token: 35 1304 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 1304 7zFM.exe