Resubmissions
06/01/2025, 11:51 UTC
250106-n1dmaawjcy 1006/01/2025, 11:50 UTC
250106-nzmtkaxren 1006/01/2025, 11:49 UTC
250106-nzesyswja1 1006/01/2025, 11:49 UTC
250106-ny1n2avrhz 10Analysis
-
max time kernel
14s -
max time network
18s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
-
submitted
06/01/2025, 11:50 UTC
General
-
Target
dump-66c4a9831e36ed73661204f8.zip
-
Size
190KB
-
MD5
855ebe9fb4ea2969e7ceee9a191e2347
-
SHA1
7298b4fe5f58cc1e39fb35ec6db63616d76fa703
-
SHA256
4f9092ebbf9d1e9a877f841d4ca17b49047f3c10b1e8e227d28f9a808a8c1428
-
SHA512
77de832da8dd6495e26541e9344644764c101281c04a61550302339e2a89d76310ee3078bc2c8169794889f58cd96b6306541e15a2071a4573c9d686bba52403
-
SSDEEP
3072:VRo773kr6fsVbq3NIZ8OPD5IR47VFMeHNqmi094TSwyoRbbwy/kJYYfcL3meI7Hn:VOn30b2I9NC47EeqG4TQoRbiu8u+TP1x
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\dump-66c4a9831e36ed73661204f8.zip"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow