Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

file.exe

windows10-1703-x64

1

file.exe

windows7-x64

1

file.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20230220-es
  • resource tags

    arch:x64arch:x86image:win7-20230220-eslocale:es-esos:windows7-x64systemwindows
  • submitted
    03/04/2023, 17:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file.exe

  • Size

    1.4MB

  • MD5

    c5782d20b438b41c821143f7adde9e48

  • SHA1

    c3d6379a260f12f1f3793215661b1e3e0a23c35b

  • SHA256

    2b21edfa78f4c544fc6f35a934a792ff13e1bd05843ffacc04806fe3f0258b5a

  • SHA512

    e59a9c6020202fbb9c945ca6cd926cd8cf09345db596ad7e3bb8ed2c8cb237ed79c158d27b08de91678a27c6d2c2b1dc7641e321fda49dfb23d95f635496ac37

  • SSDEEP

    24576:Bq8VpMuKFBg4PiDNcGJSkRZmv+o1+eEy27mt3AF:BTVHNcG4J

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\file.exe
    "C:\Users\Admin\AppData\Local\Temp\file.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1488

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1488-54-0x0000000000350000-0x00000000004C8000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1488-55-0x00000000043B0000-0x00000000043F0000-memory.dmp

    Filesize

    256KB

    Download

  • memory/1488-56-0x00000000043B0000-0x00000000043F0000-memory.dmp

    Filesize

    256KB

    Download