Overview

overview

10

Static

static

1

Fatality.rar

windows7-x64

10

Fatality.rar

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    142s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-12-2024 23:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Fatality.rar

  • Size

    19.9MB

  • MD5

    b60d035b8bedec4e63eb8b3426e43bfb

  • SHA1

    463be6fb7f77f5894ae6b667ffef26df31410b3b

  • SHA256

    74b9b6e1e63cca5ba910a43e796597efd689675c01128a9ac26a6cd7e297766f

  • SHA512

    0ba5c1c2796d2e747090850df1444e0ed083ad7f90604f86e13e36e05c8f54f407e5b85ab5b3115bb03f7060b3eedaabfc2955ee9ad6746d6e8a7ed2435792d0

  • SSDEEP

    393216:q3OBj0xeAiZ2gQOMwrIoHVZaYVMRInHuNJ6gUS6+YxxthVvckj58/frFdwCgGmMr:+OBox2bMgPH/aYqRInHuNJ6zLNxzvckW

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\Fatality.rar"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:5004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads