Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

plutonium.exe

windows7-x64

8

plutonium.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    115s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/03/2023, 14:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    plutonium.exe

  • Size

    4.6MB

  • MD5

    72cb7c6d98e9e47274733825c9176679

  • SHA1

    8681469349254c5203a7f9a189833d22a14f5cd9

  • SHA256

    85d1d1ca4d5881d9b98928c2006fb0eec9655e2705fe74088e6f974a19703f0f

  • SHA512

    d18d306ca9a311df1a96244ecc67a3e61ffc8b9b465a1301263e11d500cc2f38847e922c57d4a3321196d6ceb32310113d7d790b4dfb2c05c3ff1e2af26dc708

  • SSDEEP

    98304:zUaMwIBAoUcmmxVA5/xDnLx0yu+5TeRXExXYAx:Ia+AobhATd0yH0RXUo2

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\plutonium.exe
    "C:\Users\Admin\AppData\Local\Temp\plutonium.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4396-133-0x000002135DAD0000-0x000002135DF78000-memory.dmp

    Filesize

    4.7MB

    Download

  • memory/4396-134-0x000002135E390000-0x000002135E398000-memory.dmp

    Filesize

    32KB

    Download

  • memory/4396-135-0x000002135FBE0000-0x000002135FBFA000-memory.dmp

    Filesize

    104KB

    Download

  • memory/4396-136-0x00000213785D0000-0x00000213785D8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/4396-137-0x000002137A400000-0x000002137A4BA000-memory.dmp

    Filesize

    744KB

    Download

  • memory/4396-138-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-139-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-140-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-141-0x000002137F010000-0x000002137F048000-memory.dmp

    Filesize

    224KB

    Download

  • memory/4396-142-0x000002137EFB0000-0x000002137EFBE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/4396-143-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-144-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-145-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-146-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4396-147-0x00000213785F0000-0x0000021378600000-memory.dmp

    Filesize

    64KB

    Download