Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

b34118e5fd...6e.exe

windows7-x64

1

b34118e5fd...6e.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20/04/2023, 01:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b34118e5fdc7e866964ee1f248f0e4efeb9b08ce2025da06cf3061b31fc2bb6e.exe

  • Size

    385KB

  • MD5

    0d4b9522ac2badd65c4bf289dda7de9e

  • SHA1

    9bf139d388524b2e8a070b3d194da85d9979052a

  • SHA256

    b34118e5fdc7e866964ee1f248f0e4efeb9b08ce2025da06cf3061b31fc2bb6e

  • SHA512

    9a6fb4981a670c11922901f4fa6c27b0b93d752d054ea864bed2d5acb3eab797db73336ad436eaf765a05492603649da1a96d797f0ade2bff458fe689ab7389e

  • SSDEEP

    3072:2AL3kgoRNyHXIQenAKo7MMye9zurKCy5bl0EBUUffNtWEivOOOJZoeVzYN2+0cIv:bUfAb7nC0WEG05iT

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b34118e5fdc7e866964ee1f248f0e4efeb9b08ce2025da06cf3061b31fc2bb6e.exe
    "C:\Users\Admin\AppData\Local\Temp\b34118e5fdc7e866964ee1f248f0e4efeb9b08ce2025da06cf3061b31fc2bb6e.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4604

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4604-133-0x0000000000940000-0x00000000009A6000-memory.dmp

    Filesize

    408KB

    Download

  • memory/4604-134-0x0000000002E20000-0x0000000002E30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4604-135-0x0000000002E20000-0x0000000002E30000-memory.dmp

    Filesize

    64KB

    Download