Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

NUEVO PEDI...2.xlam

windows7-x64

10

NUEVO PEDI...2.xlam

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    145s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/08/2023, 12:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NUEVO PEDIDO - CF0002.xlam

  • Size

    624KB

  • MD5

    5689ad77747f797c7fce700583f816a4

  • SHA1

    0c50fdc9f2e15c8a08c55d4eb4677282e544de4d

  • SHA256

    dc7443935ed909e177df4ee104aa44d63ae47cf482b2d03fe0cff0bc3a1fbfc7

  • SHA512

    6a139d6f80025b4a1518a7178e47366c0176e1e6a73017cb044380ab51a06aaab80e7d2f69d25d673abf463cdf2abe03dc4e1beb6c59926fe4a3afc90da33cd2

  • SSDEEP

    12288:ITIKpW2H8A00G0lx3dgcxaCnF/FrIVN7CbT3AR3fkO15GrnxV60fus/y2:EIKpW2H8A/b3aK5IRfDdCl/y2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\NUEVO PEDIDO - CF0002.xlam"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    PID:4960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4960-133-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-134-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-135-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-136-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-137-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-138-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-140-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-139-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-141-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-142-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-143-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-144-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-145-0x00007FFED0450000-0x00007FFED0460000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-146-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-147-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-148-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-150-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-149-0x00007FFED0450000-0x00007FFED0460000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-152-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-151-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-153-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-154-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-155-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-156-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-158-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-162-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4960-179-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-180-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-181-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-182-0x00007FFED2590000-0x00007FFED25A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4960-183-0x00007FFF12510000-0x00007FFF12705000-memory.dmp

    Filesize

    2.0MB

    Download