Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
210s -
max time network
237s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
06/12/2022, 14:10
Static task
static1
Behavioral task
behavioral1
Sample
9fa8b246d5dd84c7982cf3053e10d87e3914f85ba090841de133237c792be419.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9fa8b246d5dd84c7982cf3053e10d87e3914f85ba090841de133237c792be419.exe
Resource
win10v2004-20221111-en
General
-
Target
9fa8b246d5dd84c7982cf3053e10d87e3914f85ba090841de133237c792be419.exe
-
Size
18KB
-
MD5
5dfc5a95da9bba4c3ce4280f4b16c39e
-
SHA1
575fff5ceeb3aa082f05c2a7544bb0779fd1ed13
-
SHA256
9fa8b246d5dd84c7982cf3053e10d87e3914f85ba090841de133237c792be419
-
SHA512
3ebfc06fc40a644062ed552391fb2f7e56031fd3de6f28bf2a822f94196e0960ae3677e63da71088530c1759d188a9664e7c8ad7f3cd1a47ffe414646baa2bf4
-
SSDEEP
384:+5CU9HB5Zv/g44+qnvAVICsmdjMe/naV:+5j7oznv4IC7Tni
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: 33 3500 9fa8b246d5dd84c7982cf3053e10d87e3914f85ba090841de133237c792be419.exe Token: SeIncBasePriorityPrivilege 3500 9fa8b246d5dd84c7982cf3053e10d87e3914f85ba090841de133237c792be419.exe