Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

Silent Aim.rar

windows7-x64

3

Silent Aim.rar

windows10-2004-x64

3

Silent Aim...gs.reg

windows7-x64

1

Silent Aim...gs.reg

windows10-2004-x64

1

Silent Aim...IX.reg

windows7-x64

8

Silent Aim...IX.reg

windows10-2004-x64

8

Silent Aim...AX.reg

windows7-x64

1

Silent Aim...AX.reg

windows10-2004-x64

1

Silent Aim...ix.reg

windows7-x64

1

Silent Aim...ix.reg

windows10-2004-x64

1

Silent Aim/config.cfg

windows7-x64

3

Silent Aim/config.cfg

windows10-2004-x64

3

Silent Aim...er.dll

windows7-x64

1

Silent Aim...er.dll

windows10-2004-x64

1

Silent Aim...bg.dll

windows7-x64

1

Silent Aim...bg.dll

windows10-2004-x64

1

Silent Aim...bg.dll

windows7-x64

1

Silent Aim...bg.dll

windows10-2004-x64

1

Silent Aim..._s.dll

windows7-x64

1

Silent Aim..._s.dll

windows10-2004-x64

1

Silent Aim/klaxer.cfg

windows7-x64

3

Silent Aim/klaxer.cfg

windows10-2004-x64

3

Silent Aim...ig.cfg

windows7-x64

3

Silent Aim...ig.cfg

windows10-2004-x64

3

Analysis

  • max time kernel
    31s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    11/06/2023, 20:01 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Silent Aim/dlls/vstdlib_s.dll

  • Size

    200KB

  • MD5

    963a90479472342c2e30e0cf0fb0f2e6

  • SHA1

    0803a940989e235879be5149583ae6e918faa456

  • SHA256

    86d1c234c266966d424976b0f81a46495057aa7a791edc16bef5f04238720dc0

  • SHA512

    c2480a3d774f0cc302f05f46ba33d38250ab90731e02b915ce6919da67c61e4537f78494ae2c4b5be9c872433eabc9f7a58a39b1bb23ca078c95cc8e48dfcd36

  • SSDEEP

    3072:S5hEf99KYgIc+0xbGZ8a5DBg6eWGMB5YPS79O+lclwS/rTH:JXKdGZ8a5DyBCaPS79O61K

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Silent Aim\dlls\vstdlib_s.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:924
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Silent Aim\dlls\vstdlib_s.dll",#1
      2⤵
        PID:1296

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.