Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

GB_b19741fxj.apk

android-9-x86

1

YOWA.html

windows7-x64

1

YOWA.html

windows10-2004-x64

1

changelog-ar.html

windows7-x64

1

changelog-ar.html

windows10-2004-x64

1

changelog.html

windows7-x64

1

changelog.html

windows10-2004-x64

1

clockDarkTheme.xml

windows7-x64

1

clockDarkTheme.xml

windows10-2004-x64

1

clockLightTheme.xml

windows7-x64

1

clockLightTheme.xml

windows10-2004-x64

1

credits.html

windows7-x64

1

credits.html

windows10-2004-x64

1

e0012.png

windows7-x64

3

e0012.png

windows10-2004-x64

3

e0231.png

windows7-x64

3

e0231.png

windows10-2004-x64

3

e0537.png

windows7-x64

3

e0537.png

windows10-2004-x64

3

e1296.obi

windows7-x64

3

e1296.obi

windows10-2004-x64

5

e1299.png

windows7-x64

3

e1299.png

windows10-2004-x64

3

e1300.png

windows7-x64

3

e1300.png

windows10-2004-x64

3

e1302.png

windows7-x64

3

e1302.png

windows10-2004-x64

3

e1439.png

windows7-x64

3

e1439.png

windows10-2004-x64

3

e1440.png

windows7-x64

3

e1440.png

windows10-2004-x64

3

e1441.obi

windows7-x64

3

Resubmissions

06/07/2023, 18:35

230706-w8fqlsdg43 7

06/07/2023, 18:32

230706-w6mfdadg35 7

06/07/2023, 18:27

230706-w34kgsdg32 7

05/07/2023, 09:21

230705-lbqjfabd66 7

05/07/2023, 08:59

230705-kxxdfach7v 7

05/07/2023, 08:41

230705-klwmrscg9y 7

05/07/2023, 07:15

230705-h3aqhscf6z 7

05/07/2023, 07:13

230705-h2e9lsba95 7

05/07/2023, 06:50

230705-hl6fvscf2t 7

Analysis

  • max time kernel
    24s
  • max time network
    32s
  • platform
    windows7_x64
  • resource
    win7-20230703-en
  • resource tags

    arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2023, 06:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e0537.png

  • Size

    2KB

  • MD5

    2b8e15e3c5b30ee626deaaa04f6bd0ba

  • SHA1

    04fcd511f50187d070462c108ef126e10a90de7d

  • SHA256

    44074f2eb61774484fb90d2bdf3636faed1bb12cbf022673af91e01e4619319b

  • SHA512

    1101d686d77c8ecc3a750633a5acd3839b95da1a829672cebd728ba2bb23aad780740cb27e5a25e77f064ecc1636ff9de0151564c077407f755d49764b381d57

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Windows\System32\rundll32.exe
    C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen C:\Users\Admin\AppData\Local\Temp\e0537.png
    1⤵
    • Suspicious use of FindShellTrayWindow
    PID:2292

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2292-54-0x0000000000230000-0x0000000000231000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2292-55-0x0000000000230000-0x0000000000231000-memory.dmp

    Filesize

    4KB

    Download