Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

419b4ad801...6d.apk

android-9-x86

419b4ad801...6d.apk

android-10-x64

1

419b4ad801...6d.apk

android-11-x64

1

edit.xml

windows7-x64

1

edit.xml

windows10-2004-x64

5

feedback.xml

windows7-x64

1

feedback.xml

windows10-2004-x64

1

no_sleep.js

windows7-x64

1

no_sleep.js

windows10-2004-x64

1

Analysis

  • max time kernel
    128s
  • max time network
    136s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/07/2023, 09:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    no_sleep.js

  • Size

    13KB

  • MD5

    7748a45cd593f33280669b29c2c8919a

  • SHA1

    e17ecf67de61920504d79194dbee5cd552a01cfd

  • SHA256

    dce4eef0b197b640ad6aaab2228ee1ee7dccf8bd6d6b5de5484dd1bd16430a78

  • SHA512

    49b3225a5994b724b16b1890e41697c71096402f48c338fe193cb538ac8f88b7d013c0b70e81786d476be3eaf3170049df1ced6cd8957098fffecf11c13b5586

  • SSDEEP

    192:nRG+Fgkw+wi+FrZJqbzr+5rA7wbUCzebIkuHeIabmEWUSiaNRGApaFnoNhCaTLIf:n/gzi+FrZJqbzrarAyUX5uHej27W

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\no_sleep.js
    1⤵
      PID:764
    • C:\Windows\system32\rundll32.exe
      "C:\Windows\system32\rundll32.exe" "C:\Windows\SYSTEM32\EDGEHTML.dll",#141 Microsoft.VCLibs.140.00_8wekyb3d8bbwe
      1⤵
        PID:3080
      • C:\Windows\System32\svchost.exe
        C:\Windows\System32\svchost.exe -k UnistackSvcGroup
        1⤵
        • Suspicious use of AdjustPrivilegeToken
        PID:264

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • C:\Users\Admin\AppData\Local\Comms\UnistoreDB\store.jfm
        Filesize

        16KB

        MD5

        b20975c0bd08f389712a608022190491

        SHA1

        afbec7c1737e4be6c3e6c54d972e9fd351f84d71

        SHA256

        e69ef5dd93bb54c9d9bb6e56cb0b30c8bd83e0a2435cad439fd86c7a79888766

        SHA512

        17d9aac4d35a8b89c4fec2204d9b3b69c98cf7890f2e9ae528d269a0b1260e8bde159fccf78a6c38d898747dc61a9298b9dcc6b115905eae665447a70243bfd3

        Download Submit

      • memory/264-173-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-175-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-166-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-167-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-168-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-169-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-170-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-171-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-172-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-176-0x00000150C0200000-0x00000150C0201000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-165-0x00000150C05B0000-0x00000150C05B1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-174-0x00000150C05D0000-0x00000150C05D1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-133-0x00000150B7F40000-0x00000150B7F50000-memory.dmp

        Filesize

        64KB

        Download

      • memory/264-177-0x00000150C01F0000-0x00000150C01F1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-179-0x00000150C0200000-0x00000150C0201000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-182-0x00000150C01F0000-0x00000150C01F1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-185-0x00000150B79F0000-0x00000150B79F1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-149-0x00000150B8040000-0x00000150B8050000-memory.dmp

        Filesize

        64KB

        Download

      • memory/264-197-0x00000150C0330000-0x00000150C0331000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-199-0x00000150C0340000-0x00000150C0341000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-200-0x00000150C0340000-0x00000150C0341000-memory.dmp

        Filesize

        4KB

        Download

      • memory/264-201-0x00000150C0450000-0x00000150C0451000-memory.dmp

        Filesize

        4KB

        Download