Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

commandlin...st.zip

windows7-x64

1

commandlin...st.zip

windows10-2004-x64

1

cmdline-to...er.bat

windows7-x64

1

cmdline-to...er.bat

windows10-2004-x64

1

cmdline-to...er.bat

windows7-x64

1

cmdline-to...er.bat

windows10-2004-x64

5

cmdline-to...nt.bat

windows7-x64

1

cmdline-to...nt.bat

windows10-2004-x64

1

cmdline-to...en.bat

windows7-x64

1

cmdline-to...en.bat

windows10-2004-x64

1

cmdline-to...ce.bat

windows7-x64

1

cmdline-to...ce.bat

windows10-2004-x64

1

cmdline-to...t2.bat

windows7-x64

1

cmdline-to...t2.bat

windows10-2004-x64

1

cmdline-to...er.bat

windows7-x64

1

cmdline-to...er.bat

windows10-2004-x64

1

cmdline-to...README

windows7-x64

1

cmdline-to...README

windows10-2004-x64

5

cmdline-to...to.jar

windows7-x64

1

cmdline-to...to.jar

windows10-2004-x64

1

cmdline-to...ed.jar

windows7-x64

1

cmdline-to...ed.jar

windows10-2004-x64

1

cmdline-to...er.jar

windows7-x64

1

cmdline-to...er.jar

windows10-2004-x64

1

cmdline-to...ns.jar

windows7-x64

1

cmdline-to...ns.jar

windows10-2004-x64

1

cmdline-to...th.jar

windows7-x64

1

cmdline-to...th.jar

windows10-2004-x64

1

cmdline-to...er.jar

windows7-x64

1

cmdline-to...er.jar

windows10-2004-x64

1

cmdline-to...li.jar

windows7-x64

1

cmdline-to...li.jar

windows10-2004-x64

1

Resubmissions

29/06/2023, 14:46

230629-r5stjsdf66 5

29/06/2023, 14:43

230629-r3tm3aed4y 5

Analysis

  • max time kernel
    143s
  • max time network
    178s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230621-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/06/2023, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cmdline-tools/bin/lint.bat

  • Size

    2KB

  • MD5

    5976e9007acd24b391b8f74d604c928b

  • SHA1

    826fea8f25bd31ba02cbb0a8dfd1a0791e577d04

  • SHA256

    1ed541dff732ab5afc03902044c5e986f848686ba329168e5a8f143ce0741ec0

  • SHA512

    3aaf8e2a3ff965bbf8680633fd9a4564460b673c0d095433ae108b9be0c525103d8ebf6eb0f1aa3f228f56cd63f04b95899cc511b3772356076068dd71f21a20

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\cmdline-tools\bin\lint.bat"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:212
    • C:\ProgramData\Oracle\Java\javapath\java.exe
      java.exe -version
      2⤵
        PID:4424
      • C:\ProgramData\Oracle\Java\javapath\java.exe
        "java.exe" -Xmx1024m -Dcom.android.tools.lint.bindir=C:\Users\Admin\AppData\Local\Temp\cmdline-tools\bin\\.. -classpath "C:\Users\Admin\AppData\Local\Temp\cmdline-tools\bin\..\lib\lint-classpath.jar" com.android.tools.lint.Main
        2⤵
          PID:4592

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • C:\Users\Admin\.oracle_jre_usage\90737d32e3aba4b.timestamp
        Filesize

        50B

        MD5

        0e2dae1e816fb6f567107e6576e6782b

        SHA1

        9c9e4b0953fbfa36415c9bcb857c86d8ef805907

        SHA256

        4f1991d013876bfcef261ab55d17de1b7547046e1d03a5923df5c9b3060552bd

        SHA512

        3e9339940fe3a1dd8cf35154cc5e526aba9491b4ea4f8d5328c836afe2057bac9a80a3048e47c9400e564ca548e4711821b22c946e5062e3896ee71a9b5efdfd

        Download Submit

      • memory/4424-144-0x00000000023A0000-0x00000000023A1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/4592-156-0x00000000017B0000-0x00000000017B1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/4592-158-0x00000000017B0000-0x00000000017B1000-memory.dmp

        Filesize

        4KB

        Download