e407a948340cdfcd470f25d6a891864e2aea65f06d007cc9d7bd4893b0682319

Resubmissions

25/01/2025, 13:26

max time kernel
10s
platform
windows11-21h2_x64
resource
win11-20241023-en
resource tags

arch:x64arch:x86image:win11-20241023-enlocale:en-usos:windows11-21h2-x64system
submitted
25/01/2025, 13:26

Target

Xworm-V5.6 (1).rar
Size

20.9MB
MD5

fdbb726bb80ec771b3296a715153d518
SHA1

818f734ecfa2b86d06d0154db2aeb3ace92b2283
SHA256

e407a948340cdfcd470f25d6a891864e2aea65f06d007cc9d7bd4893b0682319
SHA512

b6f79f8e3182113efb6c8fb246f3bf149991a7e2255d6417d19dd478e681c08d8c3ad97d500a43609eb0dbcf5777daf58df5920e00aa40c516d5b1e46f8b3608
SSDEEP

393216:PV10n8N0/c2lDGdlMVSGpomu8u5E/ZsiLh5UirAxl9YVjxWiqcrOsb:PQn8N002A6IGS5E/RTrA89WiX9b

Score

1^/10

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: SeRestorePrivilege	3144	7zFM.exe
Token: 35	3144	7zFM.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
3144	7zFM.exe