Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

TJoC_SM.exe

windows7-x64

1

TJoC_SM.exe

windows10-2004-x64

1

Resubmissions

16/03/2023, 19:16

230316-xy5gnaeg2x 1

Analysis

  • max time kernel
    38s
  • max time network
    32s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    16/03/2023, 19:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    TJoC_SM.exe

  • Size

    131KB

  • MD5

    ae18c68a300e86003a10d75f7e15c768

  • SHA1

    50215bc17643b257a2b396ae2e9d6adab55d8214

  • SHA256

    43cdb94aaa2154ef5adf3f1d47178a34a09e7ff0383829781df9674f82248f32

  • SHA512

    7443bb1517d3c0aed000f35133674b2d372ea696d02e010c1f0bcf45d009ee2abfa212d97bde84a9b616caa872e66d0d82b69a946ed21e64c5323911620c1418

  • SSDEEP

    3072:j0Eq/ZnzAtHDo/h2MS5qCTIJXY3w682eszWbg:j0Rgs/htb0wXC6

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\TJoC_SM.exe
    "C:\Users\Admin\AppData\Local\Temp\TJoC_SM.exe"
    1⤵
      PID:1484
    • C:\Windows\system32\AUDIODG.EXE
      C:\Windows\system32\AUDIODG.EXE 0x4ec
      1⤵
      • Suspicious use of AdjustPrivilegeToken
      PID:1672

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\Desktop\CompleteProtect.M2T
      Filesize

      219KB

      MD5

      d498f979e9d3fe17cb57075dabb912d2

      SHA1

      66fd11d39d3740e7bbc42304eea1a91aa1589597

      SHA256

      83da3043a1f4467c9dfe20df618a5bd90d537289688259ac3f9f6191f4b1b4bd

      SHA512

      407634d958bbc98786e01ea9a64da94fbb3370917d5abb9f176b60ab43041ba620cbc11b2ca90f66cc67e27119366b988e384749e6edbaa3f9fa522cb7273b77

      Download Submit

    • C:\Users\Admin\Desktop\ConvertFromMount.jpeg
      Filesize

      376KB

      MD5

      41ff06eac712e0c7d94f2a6848867a5e

      SHA1

      3cc37fe9862de9495ec8e9735539cd0dbcd900f2

      SHA256

      30132f5155c1b59ff9e1826f15673561426684a09fc4a4af78a7c3c5cfd66c1e

      SHA512

      25d4f1eb819024e26f4a6b62e5cc2a0987d227ddf859c59804477240918052d7b435c8c2f3c96d33c30e814a479089746d988c972156143bbab7dcb85a09271d

      Download Submit

    • C:\Users\Admin\Desktop\DisableBackup.ods
      Filesize

      391KB

      MD5

      1fb68f47a01f9fe14f4d72d8aac4a1a7

      SHA1

      08961dd47312d4f8a2816018e5190ec6309cd956

      SHA256

      fc988986d8bef9d8d3ae37d4495597f5dcd9bff37f67ab9c954f6142ad5ec10d

      SHA512

      d380fc4ac2f02fae4482e2328d674812981302dbcbca8440a27fe6f64305950680052bc260d74eec94f328661a46f90552a75b4e9bb8cff08e75e4748a83753e

      Download Submit

    • C:\Users\Admin\Desktop\EditWatch.mid
      Filesize

      517KB

      MD5

      59d7a713c8a8916c0f9c8dff44b04f1e

      SHA1

      891747a4d543a87657c65775901a7efd34b62b8c

      SHA256

      af7926db4122c5fba3fd26916e4652d0bbf5395b4f769fa46be5976cc03d3442

      SHA512

      f6d5d633bfca23614e3208a4ef001e295622078140cb1a1b12f913a86ebdd718b5509e0f321c0e13ecfbc639988150200135a238669854f048b228a6eee4355e

      Download Submit

    • C:\Users\Admin\Desktop\GrantEdit.jfif
      Filesize

      266KB

      MD5

      a81a5b284b9c9c6d105febacec862c69

      SHA1

      033790c2b7a22d0d659a90d0520f23c329b905ef

      SHA256

      4e3cee53489927bdb130c29fce8595d28d1ff9471b95f6e579d94e21d1731297

      SHA512

      171260b1c335cd1346f932ddbb1496778dc74f0c40e91458526d2ac43f98a1eeda178fdb32c0e928023bbb9f23925c58bdf9c865bf8892d5dbc2ffca2a88fe9a

      Download Submit

    • C:\Users\Admin\Desktop\HideOut.tiff
      Filesize

      501KB

      MD5

      e4a3b20ea6bad910b03a4906ecd9b50d

      SHA1

      fcbf9e7d65d6ad427e74262807f2af04ec95bca8

      SHA256

      9829cc037b87ce11f713b64d5ee61eeeed55601172a9cfd454af01595f734465

      SHA512

      fe52ade7dec557a1259b2610063c65451ee068825e5b61311a6c3d519c6b423cfb7b78957941ba5a2d7d16a5df260ce52853886c1c0fd898f86c88280e3b048f

      Download Submit

    • C:\Users\Admin\Desktop\InvokeSearch.exe
      Filesize

      313KB

      MD5

      f62d753cf1f17d2e9114a947b535f1b5

      SHA1

      c3e6b641a1cfe6893ce284b19bae556f0cc953e1

      SHA256

      d550ef2749cb52e55018b011e8bffdaa606e2484e384777c8be9ae0596e6a233

      SHA512

      c4bc19cabba09b8911bbd7fc298bddd8e2168f1d09a955bede7dfffd39fc20f5ad44fb443e2b4357cba8070225faffac4b0b0afbe48b79f18925980ee2a36d48

      Download Submit

    • C:\Users\Admin\Desktop\MeasureGet.mov
      Filesize

      360KB

      MD5

      1b4a2571f131d3363045f27f5fccd6e7

      SHA1

      e05227d77c58d3ffb462dc308f95982999fdd4b2

      SHA256

      3dc79f68c16a812a17cb7e0bf4030e92efd5775461842b021234fb126e1f7b15

      SHA512

      2e8b9de644693fe13ee3ce5df63acebc7d74e8739ee0e6cef0c099e4569a61044b28323b3743b453e4e4356a8e34be375725a9b1a5b5110502e5727a2a4599aa

      Download Submit

    • C:\Users\Admin\Desktop\MergeWrite.easmx
      Filesize

      344KB

      MD5

      175c35f41978a9538932a00d18e19d3e

      SHA1

      144b4047ef3a404e85545ae1aa2c5de806887da2

      SHA256

      02ec69cb69416ea80fad28116ad8e8eed38a8f07983c111298ae8fcf97b796bb

      SHA512

      362a7757b9166b0ec5d0daccad192c87a3b62650390339cba2a3237faf6c29af26ffe508466d489b321387b51909bc5af19e5e47eeb029ef91ee7da940e9fc2c

      Download Submit

    • C:\Users\Admin\Desktop\OutUndo.mpeg3
      Filesize

      485KB

      MD5

      0bac8b6d8711d6c2bae9cf756460175b

      SHA1

      1ce9e3ab5b4c2b13b75124c3848bf720cc26ba48

      SHA256

      e60d0811f8539b68b55ec8c210591098c8263ed59ecadf1189a7756997206e25

      SHA512

      6dcb2723e90b8cdd47d1c670b0fc39e4dbbf1f1e0ed34488cf0ef7344fda1a5f07e9201251e86557d34e2c25c08263779221e4f9443c279249fa81a8ad6820bd

      Download Submit

    • C:\Users\Admin\Desktop\PingResume.m1v
      Filesize

      595KB

      MD5

      7b5207ffa7256acbd9f6472404dd7d80

      SHA1

      6d18fba93b373ad4e0b77299a0a55459e458a90a

      SHA256

      2be98c833dd8bf9b869dacd95332370a29119f4a074611ed187ad46e114d35cc

      SHA512

      987b24a8e5a03980a72ed05bcfa867ca8f3fbfb4536776153238d314103e2635a0ebae60bd7cb010f50bbbbbe52486c36d007d7c65555b870dda6d88c90e8cbf

      Download Submit

    • C:\Users\Admin\Desktop\ProtectLock.emz
      Filesize

      282KB

      MD5

      8a10df7635edcd4ee03ead7726e131d4

      SHA1

      f4042cb1b4ecd74a2c89c707d4c85fec5b37b471

      SHA256

      338a69917ee512775f31767c59f3c2bb1dbbd6e52b94463884c701d31a61691c

      SHA512

      e2040b9f01513bb4be7c9201c010046346bf9e351b83844b2b16b7b67e1e3ae0b9220e751d360719ed09ed736e32feb42f14406a9b6dd57df8195bfe1a223cdf

      Download Submit

    • C:\Users\Admin\Desktop\PublishOpen.ocx
      Filesize

      470KB

      MD5

      31d4cc3ca6858cc0901206fdd2cd44e9

      SHA1

      6e60cde3362e74484d588dd8601bf8c242dbe940

      SHA256

      fd46c18a6e3ee33927aef3e6aaca7fb02970ffc53f90c16a13c11dc7544fe3d9

      SHA512

      135eca59f74a6fb842dcce2845d45d5e59aaf205c82f5821672e261b38f87e44025e4c5a063439fc69d67eeb01b07bd7416b958ece4aff629c6552c21476448a

      Download Submit

    • C:\Users\Admin\Desktop\PublishPing.pptx
      Filesize

      532KB

      MD5

      ebf2b5bc13b301972b902c8a83683dad

      SHA1

      576fd842178b86f3796214b0fd8e561beec0a21c

      SHA256

      c71ad9dfc04e72da49735b71d0f507a8d1f183ba4bc41a5e42a615de945a7670

      SHA512

      e5ce0e05b3fc09643d9453a33e06807be04085fefb81ffc1388bbf50d9aad182f4aa0142ae28eb6deb7f419f6a9d9dd0f0154840abcacb7a96cc4d74eb008e49

      Download Submit

    • C:\Users\Admin\Desktop\RequestDeny.asf
      Filesize

      250KB

      MD5

      66c54b43b0a12b3e178c2915d001eb12

      SHA1

      f8a0102e748bed720e47db5a7ab364deda7d17fd

      SHA256

      784bddcfbe22fbc47fc03ae5284822118eadd39f5c2b1a137537714c533cbea1

      SHA512

      379fd4e0639100e77264379153afb174e01359746a7a5257c8bf4d6fb82efbe1b65750e908ef51a9abcd303b5c9254dae63fe47e25f9355e25bfd1a4ab48c634

      Download Submit

    • C:\Users\Admin\Desktop\ResolveSplit.mht
      Filesize

      611KB

      MD5

      14d4d49ef8a6ad684554df62263618ea

      SHA1

      70c3f5c072d25a82b67eee274137d767ffe10a46

      SHA256

      b539ab05d2ddfca40f82f4c5f17c162c4ad1fb47f5d0b3d993edc2bd66d829a0

      SHA512

      ffc59cecc598660b6016780efc03f985dacddf8fee25d039dc5f1d3fc9cee8fbf5dce0f20fc17ac5a1c17606970ef6a54f3b80c357dc3135fce7646a40a49c57

      Download Submit

    • C:\Users\Admin\Desktop\ResolveWrite.css
      Filesize

      297KB

      MD5

      aefeec60b764e2b483a43fd6007583fa

      SHA1

      8c75cd2030eabbd0f56eb005c54aa60bde14acf3

      SHA256

      3d8638f2393eebeb0faf5210673068bef9548a04a4c85a1b8e93f2464e480fe0

      SHA512

      a1857f2d472ffaa67c48e65a1f3c3b8a0ccc1e894685655982ca19cf7bedf8942dd252c115329ad347fba2c1b026a1b3aaa7b963c5aa73cc522e96e67de17930

      Download Submit

    • C:\Users\Admin\Desktop\ResumeExport.bmp
      Filesize

      548KB

      MD5

      2d872d52ac127bbfab586adda87b1d8c

      SHA1

      29d6ea84b5b6acdbc9bde20e0d2e45145298cce5

      SHA256

      9a41f15e0d2db05421ce554367a0160bcb79b4c1760d12cc115be0a47a193217

      SHA512

      0c2b5f362dd3c8da55570b67d1f98c9bc6774d2a995e02a793d5d1a89249c70dd49e47e7d467bcd4bd46613e4828d6c458baef2e57410a4bd79e3d9e787f8585

      Download Submit

    • C:\Users\Admin\Desktop\SkipRegister.ods
      Filesize

      579KB

      MD5

      f3f7e58a3208e227f83c22e4383c8d97

      SHA1

      6bed853f77695dfe1f97dd6835044bf5144f0d5e

      SHA256

      ed930638e8b80629a57be3952ad531fba849294aa2985aad119b3686044eeccf

      SHA512

      10da5338ae284ef3db840d356d19f1e063641058f41ae6be9ee245a8bc958e57b703e91051e442bb14e9fed6b30d992879a8a787f3a7697f9459444a8f095c41

      Download Submit

    • C:\Users\Admin\Desktop\StepMount.ADTS
      Filesize

      861KB

      MD5

      abac3af6c5e58b6161033ca3eae897a4

      SHA1

      9c5a81f6d83cc0f60d89ddf6fbc76392081d0786

      SHA256

      a3793a888571959e2e4331bbd4c8210e7bc31b40df6e3387dfbaa61f3ad0a0f4

      SHA512

      45ad0b6b2eca1b4beb9703c2fc05734491ef42a34348847929ae98c6ebcb1964af2fc21523560f5e28e2d5f47e647c92e22eb5b6c71443592ce58df9a7a6f50e

      Download Submit

    • C:\Users\Admin\Desktop\SuspendOut.xps
      Filesize

      626KB

      MD5

      54b2657debd3359779a5eace541f24ce

      SHA1

      3df80cd70cc6f8f93f194489048397ed3207dea4

      SHA256

      7808f4d94970ccefe5b7ca1464c645d2569f6afa3d488b01bd16658162896e80

      SHA512

      5b94fb58a724834e1aa988bd09683604f62ae3bd358ef3b87502225d970e6a093d502a9aa228ceab8e01a97888cce0ad8aa89862f0d69bbd26ebb01c46026693

      Download Submit

    • C:\Users\Admin\Desktop\TraceMerge.wmv
      Filesize

      438KB

      MD5

      93dcb18c106b147ae7e87b5868a955ba

      SHA1

      e57b55d3df46fe0e1193ced2c54dd04610e7e3aa

      SHA256

      c14ae63ba779a661e04982fa5cc89fbb56b895bd1b45d3d12512c7ca27237441

      SHA512

      eafc2c782f63a21c56e0d25ab55fc967767514fec443c36f20e02e76626d8c1aecb23fb8d1153ad25dffaae91dc34904cacb83affcfe7fb9923b6b52c55f79e2

      Download Submit

    • C:\Users\Admin\Desktop\UnblockUnprotect.ram
      Filesize

      407KB

      MD5

      8986696b33a9c2c4188cfbe7bf3ad968

      SHA1

      b1d6ad3ba7161a1b061cdf8c2951b1e339ed50c0

      SHA256

      9ab18c0a3af86580b2d7a1c87d01ce9a91bae10035b3a64bea6174a548cbf9bd

      SHA512

      d390b6e6de50845fe1e0b091b816866b47abfecbd2033755bd6f176c4aac4430a5587a27e55ab885e1a16ac87bb41ed8d1f3f44c56cc90d14f9ccba38212c4e4

      Download Submit

    • C:\Users\Admin\Desktop\UnpublishMount.wvx
      Filesize

      423KB

      MD5

      812201b1f1e22d152870f7f6a125cca0

      SHA1

      6432737d5640e1d3b53d1c6e5427a542d50a902c

      SHA256

      3e98501d3d7401fd262a47abe8ed2d0a0fb5e6bd75258e93c7744e7d879a656d

      SHA512

      f078de86df4220a09116dfae5dfb05f73af110f317f78ef5cd38c07f90d8d38be798db1bd247dd9eaf9f0d5278be34775d0275740598272e623dc14b5e5a3487

      Download Submit

    • C:\Users\Admin\Desktop\UseUninstall.mpeg
      Filesize

      454KB

      MD5

      0f6c8d81d066f887e5f9df1a3d9efc60

      SHA1

      f67e0b366848ce32f703eeb118f8822ad7a29918

      SHA256

      30c8d788dab5e7bd2697b7793715d163822f0f665e9a5d7c7267f908df2f2f1b

      SHA512

      81c64d615a2be1de257a5589964697b30764162d23323eb7f187d986b335065f7ba4e494377e4c0fb22415b967bac79a4c4892d203c0a102cc78f31f92bc58a5

      Download Submit

    • C:\Users\Admin\Desktop\WaitApprove.lock
      Filesize

      235KB

      MD5

      076314f41667f7680957ba3b80687ebb

      SHA1

      724eaec3a47f0c11a144763fc3e8192735fab5f2

      SHA256

      24de3b55c24423b16885a32bb19f93f8f04b67f5c53f55093b02070791e0e1e3

      SHA512

      6f77da01a1e06d754db19fcf2a7c95a9ac104b35c04384fcbd3c35146ab6b8bf2c733bc18a2e64bea1e3644adca6d2519c7688a5f333440fe671086652b90728

      Download Submit

    • C:\Users\Admin\Desktop\WaitLock.ico
      Filesize

      329KB

      MD5

      9d83c5867890ee1ebf784a9be26a38bf

      SHA1

      c0a3c492ebf5209e9df6ebeab80de77983dea870

      SHA256

      18c315eb46b6eed00d8b14d6c8baa1e248cc3b2610bb2b8dce8477d54b9030ac

      SHA512

      63858e2d00f15734e5a558bf272cd68ae14e0ce2cb6c57415ce783087d00d34cb78f9541bf43838ce6b3c9fbfe3311f72248e13a66973769641ba98edf21e97a

      Download Submit

    • C:\Users\Admin\Desktop\WatchImport.mpeg3
      Filesize

      564KB

      MD5

      bc4ea44bba2d31799662c0f6f662314c

      SHA1

      4052b3fa79b3b5fc10c58c96fc66175ab3e4d20d

      SHA256

      8852f8d6a0fdfb3a14890e1279fc46ede4f8ae30ed137c9cfd430bd6f985d18b

      SHA512

      b272f24255c86fbc801e6e91d94fab2c82fe6ee6e20084850b31b014e72493ae18c2a9c03cd44e4e697a73ba01d132131e8cbc406092f12017df1603750e9911

      Download Submit

    • C:\Users\Public\Desktop\Adobe Reader 9.lnk
      Filesize

      1KB

      MD5

      52b28759f07f88349e82105735d9eaac

      SHA1

      95eaeeb3b154edaa1efca10e7368ea9390db9093

      SHA256

      02ec80e554985c60ba48d829ac9487c4252aad8bb87918ca73f909c78cf5081b

      SHA512

      d621687db8e2dce0272125ea3064f779ffb839977df7b414551e5f8a9be0867c0ec221af6113a9cac02352b916de7e906b362f0cafdc837e853b28d1a00e96d9

      Download Submit

    • C:\Users\Public\Desktop\Firefox.lnk
      Filesize

      931B

      MD5

      e62a321d3a066a5ee8564a922a2abbca

      SHA1

      67f5061252662b7c362e24aaf284e590dfa87e36

      SHA256

      e471997d7a64147a8fb1aa45e4ab90af5917e8ca9e75c594184a2fa72b11144c

      SHA512

      3230023a4ecde60489427a4ac2f1dc80da3415d0dd528d11746689546488b23a932d61bee89726c5aa2237c3b502c3bf28e228007e97830be3eb82429c1c8cbf

      Download Submit

    • C:\Users\Public\Desktop\Google Chrome.lnk
      Filesize

      2KB

      MD5

      8106a280c6a1d5a67b01cb540594a9a6

      SHA1

      cbb50f7202fcf1ec47eb952bb2c64f71625b5fa8

      SHA256

      4de4e6005d3b7c11de183795cfa5bd51cf67741796908e3a665a73fd4a5bc444

      SHA512

      199f422ff189cd130cb4090ccc24fa14f692047f1d29a8a0f0e4946d9667abc6e659112789dbde91bd23ba2a4b1ac353813e81851c21c53cf8f3f083beb6b3f1

      Download Submit

    • C:\Users\Public\Desktop\VLC media player.lnk
      Filesize

      878B

      MD5

      f390ac2094362131e58eb7ae67b0190f

      SHA1

      f8fe591e943f0be16fd3db12746bf9ae8ba92de0

      SHA256

      b10b0ca52f4d13832c6aa9741dbb907f9a51867daf3d876879ae810ddadbff2a

      SHA512

      5f5732d5f2c7f76eb256d9c52e43392902f7c16448d6563d5fbd2837f36077599bddd3fc32f8da416056657fae88603cb12493fe7852006ff44a79063a79a1c4

      Download Submit