Analysis
-
max time kernel
120s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
22-12-2024 13:06
Behavioral task
behavioral1
Sample
Release.zip
Resource
win7-20240708-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
Release.zip
Resource
win10v2004-20241007-en
22 signatures
150 seconds
General
-
Target
Release.zip
-
Size
29.6MB
-
MD5
9220681474c92d9b93fbfbae86e0fa7e
-
SHA1
87fd1dd9b5f768470bbde35ae0338e00f82d49f5
-
SHA256
489e6280f29987758b82c942f5313d1f94b9650957bec37a42c17b08052b097f
-
SHA512
fdd51ce5fd978c78da29b2c64cf1ae18a3e788340fdea20b570d5e44e70fbf77a7a3b4fb20bb44debf175be47d4156086be0439b7cbb0d286529fb19958cc501
-
SSDEEP
786432:3SVZYXn/T5tL4X/9qKsWHgBcTH2ehK78YoErYjmeM:3SzknrTL4X/5ABcTpxmMmF
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 2372 7zFM.exe Token: 35 2372 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 2372 7zFM.exe