Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Resubmissions

16/10/2022, 11:23

221016-nhg7rahec5 1

16/10/2022, 10:59

221016-m3hhkshcbl 1

Analysis

  • max time kernel
    37s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    16/10/2022, 10:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    992cda549f3eb223d1fd87a860ca50370cd74fae3f7b3cd3b5e5db4495c67319.exe

  • Size

    3.7MB

  • MD5

    d1e1314df994a83001db3650d969b629

  • SHA1

    ec259d83c2f749af81d6fc4387e2e2667c4b46df

  • SHA256

    992cda549f3eb223d1fd87a860ca50370cd74fae3f7b3cd3b5e5db4495c67319

  • SHA512

    44c86ed830802183a9d771ad337df0355f2973055a523d073207a61495a78aad99c96c62bd5f812adb533aaa418d11fbc595add6725590b39bd0179190b66fe2

  • SSDEEP

    98304:KxUZHT0uACg5lEW4jZC23bVD7hXQdx+0JaJVTR:KxKQukj4jZC2xlXYx+0Jq

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\992cda549f3eb223d1fd87a860ca50370cd74fae3f7b3cd3b5e5db4495c67319.exe
    "C:\Users\Admin\AppData\Local\Temp\992cda549f3eb223d1fd87a860ca50370cd74fae3f7b3cd3b5e5db4495c67319.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2004-54-0x0000000001140000-0x00000000014F8000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/2004-55-0x000000001C690000-0x000000001C9CE000-memory.dmp

    Filesize

    3.2MB

    Download

  • memory/2004-56-0x000007FEFBE41000-0x000007FEFBE43000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2004-57-0x000000001B116000-0x000000001B135000-memory.dmp

    Filesize

    124KB

    Download

  • memory/2004-58-0x000000001E670000-0x000000001E9A2000-memory.dmp

    Filesize

    3.2MB

    Download

  • memory/2004-59-0x0000000021170000-0x00000000213D6000-memory.dmp

    Filesize

    2.4MB

    Download

  • memory/2004-60-0x000000001B116000-0x000000001B135000-memory.dmp

    Filesize

    124KB

    Download

  • memory/2004-61-0x000000001B116000-0x000000001B135000-memory.dmp

    Filesize

    124KB

    Download