Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

audio.mp3

windows7-x64

1

audio.mp3

windows10-2004-x64

6

Analysis

  • max time kernel
    37s
  • max time network
    30s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    22/05/2023, 19:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    audio.mp3

  • Size

    205KB

  • MD5

    1af60121c162f0a2a83c578069e7478a

  • SHA1

    6c76601127ec87d45c75f7ab95ccf0f6a5b0f496

  • SHA256

    9f56bd24998c7293eecc3e61e8f163d652915f42aad381a6eb7cd46fd41fb5a6

  • SHA512

    905e6f3e3ee9b898f4b29032856302a78be84133c104ac02c0c962ee70ffffa90cd46a0648b0585d8ebc22157e98705923c132791ba2503cd4cb9e792fc1a24e

  • SSDEEP

    3072:uwOM4tlS0JDZEBYHnGrhP0w5AxTs68XaOHrQz/a6+tPyadpXVYy:TOPRDZfGtP02A5sTKli6+tPp8y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of FindShellTrayWindow 12 IoCs
  • Suspicious use of SendNotifyMessage 11 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\audio.mp3"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:924
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x13c
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\vlc\vlcrc.924
    Filesize

    93KB

    MD5

    478a4a09f4f74e97335cd4d5e9da7ab5

    SHA1

    3c4f1dc52a293f079095d0b0370428ec8e8f9315

    SHA256

    884b59950669842f3c45e6da3480cd9a553538b951fb155b435b48ff38683974

    SHA512

    e96719663cd264132a8e1ea8c3f8a148c778a0c68caa2468ba47629393605b197dd9e00efad91f389de9fcc77b04981a0cf87f785f3c645cdc9e4ebd98060ca1

    Download Submit

  • memory/924-61-0x000000013F9A0000-0x000000013FA98000-memory.dmp

    Filesize

    992KB

    Download

  • memory/924-63-0x000007FEF6AC0000-0x000007FEF6D74000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/924-62-0x000007FEF7000000-0x000007FEF7034000-memory.dmp

    Filesize

    208KB

    Download

  • memory/924-64-0x000007FEFBE70000-0x000007FEFBE88000-memory.dmp

    Filesize

    96KB

    Download

  • memory/924-65-0x000007FEF7370000-0x000007FEF7387000-memory.dmp

    Filesize

    92KB

    Download

  • memory/924-66-0x000007FEF6EB0000-0x000007FEF6EC1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-67-0x000007FEF6AA0000-0x000007FEF6AB7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/924-68-0x000007FEF6A80000-0x000007FEF6A91000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-69-0x000007FEF6A60000-0x000007FEF6A7D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/924-70-0x000007FEF6A40000-0x000007FEF6A51000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-71-0x000007FEF67D0000-0x000007FEF69D0000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/924-72-0x000007FEF5720000-0x000007FEF67CB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/924-74-0x000007FEF6A10000-0x000007FEF6A31000-memory.dmp

    Filesize

    132KB

    Download

  • memory/924-73-0x000007FEF56E0000-0x000007FEF571F000-memory.dmp

    Filesize

    252KB

    Download

  • memory/924-75-0x000007FEF56C0000-0x000007FEF56D8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/924-76-0x000007FEF56A0000-0x000007FEF56B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-77-0x000007FEF5680000-0x000007FEF5691000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-78-0x000007FEF5660000-0x000007FEF5671000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-79-0x000007FEF5640000-0x000007FEF565B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/924-80-0x000007FEF5620000-0x000007FEF5631000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-81-0x000007FEF5600000-0x000007FEF5618000-memory.dmp

    Filesize

    96KB

    Download

  • memory/924-82-0x000007FEF55D0000-0x000007FEF5600000-memory.dmp

    Filesize

    192KB

    Download

  • memory/924-83-0x000007FEF5560000-0x000007FEF55C7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/924-84-0x000007FEF54F0000-0x000007FEF555F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/924-85-0x000007FEF54D0000-0x000007FEF54E1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-86-0x000007FEF54B0000-0x000007FEF54C7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/924-87-0x000007FEF5490000-0x000007FEF54A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-88-0x000007FEF5430000-0x000007FEF5487000-memory.dmp

    Filesize

    348KB

    Download

  • memory/924-89-0x000007FEF5400000-0x000007FEF542F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/924-90-0x000007FEF53E0000-0x000007FEF53F3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/924-91-0x000007FEF53C0000-0x000007FEF53D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-92-0x000007FEF52F0000-0x000007FEF53B5000-memory.dmp

    Filesize

    788KB

    Download

  • memory/924-93-0x000007FEF52D0000-0x000007FEF52E2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/924-94-0x000007FEF52B0000-0x000007FEF52C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-95-0x000007FEF5290000-0x000007FEF52A4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/924-96-0x000007FEF5270000-0x000007FEF5282000-memory.dmp

    Filesize

    72KB

    Download

  • memory/924-97-0x000007FEF5250000-0x000007FEF5264000-memory.dmp

    Filesize

    80KB

    Download

  • memory/924-98-0x000007FEF5230000-0x000007FEF524E000-memory.dmp

    Filesize

    120KB

    Download

  • memory/924-99-0x000007FEF5210000-0x000007FEF5226000-memory.dmp

    Filesize

    88KB

    Download

  • memory/924-100-0x000007FEF51F0000-0x000007FEF5205000-memory.dmp

    Filesize

    84KB

    Download

  • memory/924-101-0x000007FEF51D0000-0x000007FEF51E4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/924-102-0x000007FEF51A0000-0x000007FEF51CC000-memory.dmp

    Filesize

    176KB

    Download

  • memory/924-103-0x000007FEF5180000-0x000007FEF5192000-memory.dmp

    Filesize

    72KB

    Download

  • memory/924-104-0x000007FEF5150000-0x000007FEF5180000-memory.dmp

    Filesize

    192KB

    Download

  • memory/924-105-0x000007FEF5130000-0x000007FEF5147000-memory.dmp

    Filesize

    92KB

    Download

  • memory/924-106-0x000007FEF3980000-0x000007FEF5130000-memory.dmp

    Filesize

    23.7MB

    Download

  • memory/924-107-0x000007FEF3960000-0x000007FEF3971000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-108-0x000007FEF3940000-0x000007FEF3952000-memory.dmp

    Filesize

    72KB

    Download

  • memory/924-109-0x000007FEF37C0000-0x000007FEF3938000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/924-110-0x000007FEF37A0000-0x000007FEF37B7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/924-111-0x000007FEF3740000-0x000007FEF3796000-memory.dmp

    Filesize

    344KB

    Download

  • memory/924-112-0x000007FEF3710000-0x000007FEF3738000-memory.dmp

    Filesize

    160KB

    Download

  • memory/924-113-0x000007FEF36E0000-0x000007FEF3704000-memory.dmp

    Filesize

    144KB

    Download

  • memory/924-114-0x000007FEF7A30000-0x000007FEF7A40000-memory.dmp

    Filesize

    64KB

    Download

  • memory/924-115-0x000007FEF36C0000-0x000007FEF36D6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/924-116-0x000007FEF3640000-0x000007FEF36B5000-memory.dmp

    Filesize

    468KB

    Download

  • memory/924-117-0x000007FEF35D0000-0x000007FEF3632000-memory.dmp

    Filesize

    392KB

    Download

  • memory/924-118-0x000007FEF3560000-0x000007FEF35CD000-memory.dmp

    Filesize

    436KB

    Download

  • memory/924-119-0x000007FEF3540000-0x000007FEF3555000-memory.dmp

    Filesize

    84KB

    Download

  • memory/924-120-0x000007FEF3200000-0x000007FEF3211000-memory.dmp

    Filesize

    68KB

    Download

  • memory/924-121-0x000007FEF31E0000-0x000007FEF31F2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/924-122-0x000007FEF3060000-0x000007FEF31DA000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/924-123-0x000007FEF3040000-0x000007FEF3053000-memory.dmp

    Filesize

    76KB

    Download

  • memory/924-124-0x000007FEF3020000-0x000007FEF3034000-memory.dmp

    Filesize

    80KB

    Download