Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

897e8e4e3d...e0.exe

windows7-x64

1

897e8e4e3d...e0.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    159s
  • max time network
    172s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/11/2022, 15:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    897e8e4e3de10751daa83680876f142f6a93b0fa6f520b7e6dd6bc4db98df8e0.exe

  • Size

    149KB

  • MD5

    048917945d725802694b7233faf99698

  • SHA1

    4849764080142c370b498bdfc417c45d5b9526e1

  • SHA256

    897e8e4e3de10751daa83680876f142f6a93b0fa6f520b7e6dd6bc4db98df8e0

  • SHA512

    14b9a78f9d3d15015d0de05b37006a3d11e7e5cd62d6aadb03124a506366942ce7c2c83e620471d9fc30150680928c96b2a730edf54eafc1a7994beef5db9910

  • SSDEEP

    3072:prUeUSuJmksuboh10e07QCHm+BM7t5Diq8+db2h0nN4ozY8qL:FsMl9d5Diq8+dbXN4ozY5L

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\897e8e4e3de10751daa83680876f142f6a93b0fa6f520b7e6dd6bc4db98df8e0.exe
    "C:\Users\Admin\AppData\Local\Temp\897e8e4e3de10751daa83680876f142f6a93b0fa6f520b7e6dd6bc4db98df8e0.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2228-132-0x0000000000D80000-0x0000000000DAA000-memory.dmp

    Filesize

    168KB

    Download

  • memory/2228-133-0x0000000000D80000-0x0000000000DAA000-memory.dmp

    Filesize

    168KB

    Download