Overview

overview

10

Static

static

5

RFQ PC25-1...PDF.7z

windows7-x64

1

RFQ PC25-1...PDF.7z

windows10-2004-x64

1

RFQ PC25-1...DF.exe

windows7-x64

10

RFQ PC25-1...DF.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    93s
  • max time network
    142s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-01-2025 10:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RFQ PC25-1301 Product Specifications_PDF.7z

  • Size

    873KB

  • MD5

    7297413d7b4f8f502ffe24553751f98d

  • SHA1

    42168e3bad92197de796b272fd07ead86a66d59e

  • SHA256

    49ad7ec85c6bd257055d90a7d4e0aeada2e31620b9fc6f36e82f48416c25ce33

  • SHA512

    baf0a88bdd9c6afbc4ccc413f55a8575a3051718ba78a2adc261279bf91b119c57f59d22632d4ec116063a9b20d566e3dca1a677b5a4f9ab9b37533b889c56e3

  • SSDEEP

    24576:FPw0ZO/dZ+KnPL31YTnJRxFpXLb9W1T+e9:yG2nzWTnJ3bSTz9

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\RFQ PC25-1301 Product Specifications_PDF.7z"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:1244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads