Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
92s -
max time network
99s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
-
submitted
29/11/2022, 16:09
General
-
Target
35baf6f8455ddb5dbac2a40ffdbbdae04b24f2c34af9dc4eabd7d4acded031cc.exe
-
Size
205KB
-
MD5
bd718e216ccae05a3d9258ee9e8d2cf3
-
SHA1
ea5110f9040d9b5af98aa902f2ad6516e95144ab
-
SHA256
35baf6f8455ddb5dbac2a40ffdbbdae04b24f2c34af9dc4eabd7d4acded031cc
-
SHA512
9822b2a190032c2937700288b84c4dee72a9bf4ac931a4e68aa0c3b5bfe21c2a62c4381bd6fb956838895334519dd5f0d31f1ecbbdc67306da3395ffcb4d293d
-
SSDEEP
3072:a22O81KXCQu7d1sc1/1QB9EHazy+gSqbncI2i2gV+dwYun6g3Yu06ZoQs:a22TQu7dJXa3qjv2c55n6qYupS7
Score
7/10
Malware Config
Signatures
-
Unexpected DNS network traffic destination 1 IoCs
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\35baf6f8455ddb5dbac2a40ffdbbdae04b24f2c34af9dc4eabd7d4acded031cc.exe"C:\Users\Admin\AppData\Local\Temp\35baf6f8455ddb5dbac2a40ffdbbdae04b24f2c34af9dc4eabd7d4acded031cc.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
284KB
-
Filesize
284KB
-
Filesize
284KB