Analysis
-
max time kernel
95s -
max time network
141s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
22-01-2025 10:09
General
-
Target
PO202501A.zip
-
Size
6.9MB
-
MD5
ed20f5e19ddb0017385a7bca37003fe5
-
SHA1
662c42db572081a5c4520870b33c0ace98a316f9
-
SHA256
372dc76e6d84b69619af43c61f21cb2fa5e0cd5ff8d0025c00858c16854ad077
-
SHA512
c025a3b9bfa0ad789360c101e8cf7ff15d726894a6a04c0bc5685e994ce716c12b7fc436ae57555eec9963f1aa9aa85d7db738e9003fbae2d2d46383a117dd5e
-
SSDEEP
98304:J6bunqIas8R6oPuD1YyaKaNqlhK6CM2yZpePlYmhHLpye+QjmuypsWYkxt2XhoAL:J6anattmeNKaNqlxSyZ8Pm0kQjk8XfL
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\PO202501A.zip"1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow