Analysis
-
max time kernel
98s -
max time network
138s -
platform
windows10-ltsc 2021_x64 -
resource
win10ltsc2021-20241211-en -
resource tags
-
submitted
05-01-2025 13:55
General
-
Target
250105-q6qj5swkgt_pw_infected.zip
-
Size
57KB
-
MD5
285c18011c5fc4e42e75afa153598a25
-
SHA1
68e83db6b899ed392cc8da8286d7cbdc4137266b
-
SHA256
4db97887e2f995ef5755919852ac6191b4067a11c46309aa12193f5bb7eded47
-
SHA512
ffcf65820865fe9804d2974e46217753b368f48e18b405de45500c2b64b0a1c9b79463d51a8da7c3dea02c9d6ec050ac8eca98da9a84efb460d5dda4768ece09
-
SSDEEP
1536:PVPSyvNBuKlIZ/5JoykMfS/7/UM0W/RqsAeeuFiw+OBPRab:PBSyvfn+Z/5JoykMfS/7/d0sRNAeee+P
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 3 IoCs
-
Suspicious use of FindShellTrayWindow 3 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\250105-q6qj5swkgt_pw_infected.zip"1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow