Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

Minecraft ...om.apk

android-9-x86

0-0caa7.png

windows7-x64

3

0-0caa7.png

windows10-2004-x64

3

00_dcast_lineup.png

windows7-x64

3

00_dcast_lineup.png

windows10-2004-x64

3

01_Alex_Dcast.json

windows7-x64

3

01_Alex_Dcast.json

windows10-2004-x64

3

01_dcast_l...ri.png

windows7-x64

3

01_dcast_l...ri.png

windows10-2004-x64

3

02_ Noor_Dcast.json

windows7-x64

3

02_ Noor_Dcast.json

windows10-2004-x64

3

02_dcast_l...or.png

windows7-x64

3

02_dcast_l...or.png

windows10-2004-x64

5

03_Ari_Dcast.json

windows7-x64

3

03_Ari_Dcast.json

windows10-2004-x64

3

03_dcast_l...ai.png

windows7-x64

3

03_dcast_l...ai.png

windows10-2004-x64

3

04_Sunny_Dcast.json

windows7-x64

3

04_Sunny_Dcast.json

windows10-2004-x64

3

04_dcast_l...ri.png

windows7-x64

3

04_dcast_l...ri.png

windows10-2004-x64

3

05_Makena_Dcast.json

windows7-x64

3

05_Makena_Dcast.json

windows10-2004-x64

5

05_dcast_l...ve.png

windows7-x64

3

05_dcast_l...ve.png

windows10-2004-x64

3

06_Efe_Dcast.json

windows7-x64

3

06_Efe_Dcast.json

windows10-2004-x64

3

06_dcast_l...ex.png

windows7-x64

3

06_dcast_l...ex.png

windows10-2004-x64

3

07_Zuri_Dcast.json

windows7-x64

3

07_Zuri_Dcast.json

windows10-2004-x64

5

07_dcast_l...fe.png

windows7-x64

3

Analysis

  • max time kernel
    151s
  • max time network
    243s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230621-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/06/2023, 18:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05_Makena_Dcast.json

  • Size

    1KB

  • MD5

    a2fe812cb79136ac24e76ac3528467ba

  • SHA1

    a6c92608793740e3c3c45909463de9a54f212249

  • SHA256

    ffe6781a30e495ec6098010e6f68ee0be8ab4de47ec853fa40e680834c6d8770

  • SHA512

    83f49ee603858580c838f06a954b5eb05f3723e40d9793c6d4319ef6bae0a8566a2654ae3e8e824d9a9afe4014a6cb9595cdf0035010e8e317b385177048a301

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\05_Makena_Dcast.json
    1⤵
    • Modifies registry class
    PID:3144
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:1704
  • C:\Windows\System32\svchost.exe
    C:\Windows\System32\svchost.exe -k netsvcs -p
    1⤵
    • Drops file in System32 directory
    PID:748

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads