Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

programdata/srv.reg

windows7-x64

8

programdata/srv.reg

windows10-2004-x64

8

Resubmissions

10/09/2022, 13:55

220910-q8e67adhel 8

Analysis

  • max time kernel
    141s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/09/2022, 13:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    programdata/srv.reg

  • Size

    1KB

  • MD5

    447370ce99b8afd48e745f4e606afe62

  • SHA1

    dc26ee645bf82d989cc9b3c562a849b9c5792f66

  • SHA256

    1c6989192e6574dafcedb920adde1169973441e0bb1ec6768888ecc663139938

  • SHA512

    32b8d9fb5fc7038df73cc97d9c89e4fadb5a68171acf66f8c22a14d12fcf321843598e3336c1557077ae43ebf8159e6c2df88a0f461839126ce8afa9ee5882b4

Score
8/10
persistence

Malware Config

Signatures

Processes

  • C:\Windows\regedit.exe
    regedit.exe "C:\Users\Admin\AppData\Local\Temp\programdata\srv.reg"
    1⤵
    • Sets DLL path for service in the registry
    • Sets service image path in registry
    • Runs .reg file with regedit
    PID:1368

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads