Overview

overview

10

Static

static

1

#Pa$$w0rD_...#$.zip

windows7-x64

10

#Pa$$w0rD_...#$.zip

windows10-2004-x64

10

#Pa$$w0rD_...p#$.7z

windows7-x64

1

#Pa$$w0rD_...p#$.7z

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-01-2025 06:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    #Pa$$w0rD__5567--0peɴ_Set-Up#$.7z

  • Size

    10.8MB

  • MD5

    8a8fdd3c002cd00778cbfda5426972f8

  • SHA1

    2fa03f4bc0eef9073d7b1e68cfaeb1d2b63b8713

  • SHA256

    99c705e030f7c9f9602d760fc27e882a36439f1368f4f2214f96917e1976c427

  • SHA512

    eba67df3fa95936c6cfb407ac708d90930db0c7240255f920a5ece08c3a78164b7a3c47d3d009715e5a62009827295c6571c006918410c9eb3cab06d4182a924

  • SSDEEP

    196608:Tzcw72+hAscuMLLMu9ia2P4A+DkF/SjLpMj1syona9ryk5WRZajMkCm0ZvcAOTS+:T4wphA9Rpia3A+Do/SjLGjrQa9ry0+Sr

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\#Pa$$w0rD__5567--0peɴ_Set-Up#$.7z"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:2520

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads