Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

plutonium.exe

windows7-x64

8

plutonium.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    97s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2023, 14:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    plutonium.exe

  • Size

    4.6MB

  • MD5

    72cb7c6d98e9e47274733825c9176679

  • SHA1

    8681469349254c5203a7f9a189833d22a14f5cd9

  • SHA256

    85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f

  • SHA512

    d18d306ca9a311df1a96244ecc67a3e61ffc8b9b465a1301263e11d500cc2f38847e922c57d4a3321196d6ceb32310113d7d790b4dfb2c05c3ff1e2af26dc708

  • SSDEEP

    98304:zUaMwIBAoUcmmxVA5/xDnLx0yu+5TeRXExXYAx:Ia+AobhATd0yH0RXUo2

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\plutonium.exe
    "C:\Users\Admin\AppData\Local\Temp\plutonium.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3C8C.tmp
    Filesize

    161KB

    MD5

    be2bec6e8c5653136d3e72fe53c98aa3

    SHA1

    a8182d6db17c14671c3d5766c72e58d87c0810de

    SHA256

    1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

    SHA512

    0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

    Download Submit

  • memory/2012-70-0x000000001B170000-0x000000001B178000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2012-72-0x000000001B1A0000-0x000000001B1AA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2012-58-0x0000000000C80000-0x0000000000C9A000-memory.dmp

    Filesize

    104KB

    Download

  • memory/2012-59-0x0000000000EB0000-0x0000000000EBA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2012-60-0x0000000000EC0000-0x0000000000ECA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2012-61-0x000000001BEA0000-0x000000001C20C000-memory.dmp

    Filesize

    3.4MB

    Download

  • memory/2012-62-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-63-0x000000001ABB0000-0x000000001ABF2000-memory.dmp

    Filesize

    264KB

    Download

  • memory/2012-64-0x000000001C210000-0x000000001CA76000-memory.dmp

    Filesize

    8.4MB

    Download

  • memory/2012-66-0x0000000000ED0000-0x0000000000EF2000-memory.dmp

    Filesize

    136KB

    Download

  • memory/2012-65-0x000000001ABF0000-0x000000001AC40000-memory.dmp

    Filesize

    320KB

    Download

  • memory/2012-67-0x000000001B6F0000-0x000000001B772000-memory.dmp

    Filesize

    520KB

    Download

  • memory/2012-68-0x000000001B140000-0x000000001B166000-memory.dmp

    Filesize

    152KB

    Download

  • memory/2012-69-0x000000001AC40000-0x000000001AC48000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2012-57-0x0000000000C70000-0x0000000000C7C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/2012-54-0x0000000000F80000-0x0000000001428000-memory.dmp

    Filesize

    4.7MB

    Download

  • memory/2012-74-0x000000001B5B0000-0x000000001B5D8000-memory.dmp

    Filesize

    160KB

    Download

  • memory/2012-73-0x000000001B230000-0x000000001B24E000-memory.dmp

    Filesize

    120KB

    Download

  • memory/2012-71-0x000000001B180000-0x000000001B196000-memory.dmp

    Filesize

    88KB

    Download

  • memory/2012-75-0x000000001B5E0000-0x000000001B5EA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/2012-76-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-77-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-78-0x000000001B970000-0x000000001B971000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2012-86-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-151-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-152-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-154-0x000000001B1B0000-0x000000001B230000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-56-0x0000000000EA0000-0x0000000000EA8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2012-55-0x0000000000BE0000-0x0000000000C60000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2012-370-0x000000001CD60000-0x000000001CDD6000-memory.dmp

    Filesize

    472KB

    Download

  • memory/2012-371-0x000000001A8B0000-0x000000001A8E2000-memory.dmp

    Filesize

    200KB

    Download