Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

RyuModManager.exe

windows10-2004-x64

1

RyuModManagerGUI.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    25s
  • max time network
    27s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/05/2023, 02:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RyuModManagerGUI.exe

  • Size

    1.6MB

  • MD5

    45bb8d03c36eaa52596e7bf6099e983f

  • SHA1

    6fd9f8a13580b0629a1d2306fcb2eb251b3c37b3

  • SHA256

    255cdee577013fe98820da8aa811b08994a555a77ae48a0893b34000ee1f30c7

  • SHA512

    f950fb0a4a86b22b9bf497d910c3b7672cbdfcf0883f6f9180392d2d3de4ae9bbc1d363df8dfea00974692e96e4805a2bd12a6c2f9019ec5058d06216b101acb

  • SSDEEP

    49152:MBqfBrrTL1/HRqJ6STDEbanCn1B2rP0LTxmwCC:mq5rrTL1/HRqseSWQALVwCC

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\RyuModManagerGUI.exe
    "C:\Users\Admin\AppData\Local\Temp\RyuModManagerGUI.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2128-133-0x000001ED851B0000-0x000001ED85356000-memory.dmp

    Filesize

    1.6MB

    Download

  • memory/2128-136-0x000001ED858F0000-0x000001ED8590A000-memory.dmp

    Filesize

    104KB

    Download

  • memory/2128-139-0x000001ED9F960000-0x000001ED9F970000-memory.dmp

    Filesize

    64KB

    Download