Analysis
-
max time kernel
313s -
max time network
318s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
-
submitted
29-01-2025 15:29
General
-
Target
Xworm-V5.6.rar
-
Size
20.9MB
-
MD5
fdbb726bb80ec771b3296a715153d518
-
SHA1
818f734ecfa2b86d06d0154db2aeb3ace92b2283
-
SHA256
e407a948340cdfcd470f25d6a891864e2aea65f06d007cc9d7bd4893b0682319
-
SHA512
b6f79f8e3182113efb6c8fb246f3bf149991a7e2255d6417d19dd478e681c08d8c3ad97d500a43609eb0dbcf5777daf58df5920e00aa40c516d5b1e46f8b3608
-
SSDEEP
393216:PV10n8N0/c2lDGdlMVSGpomu8u5E/ZsiLh5UirAxl9YVjxWiqcrOsb:PQn8N002A6IGS5E/RTrA89WiX9b
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
Processes
-
C:\Program Files\7-Zip\7zFM.exe"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\Xworm-V5.6.rar"1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow