Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

2022 Setting File.zip

windows10-2004-x64

1

Setting Fi...ry.dll

windows10-2004-x64

1

Setting Fi...ry.pdb

windows10-2004-x64

3

Setting Fi...cation

windows10-2004-x64

1

Setting Fi...rd.exe

windows10-2004-x64

1

Setting Fi...xe.xml

windows10-2004-x64

3

Setting Fi...nifest

windows10-2004-x64

3

Setting Fi...rd.pdb

windows10-2004-x64

3

Setting Fi...re.dll

windows10-2004-x64

1

Setting Fi...rd.exe

windows10-2004-x64

3

Setting Fi...es.dll

windows10-2004-x64

1

Setting Fi...es.dll

windows10-2004-x64

1

Setting Fi...er.mp4

windows10-2004-x64

6

Setting Fi...ng.mp4

windows10-2004-x64

6

Setting Fi...+D.mp4

windows10-2004-x64

6

Setting Fi...up.mp4

windows10-2004-x64

6

Setting Fi...ng.mp4

windows10-2004-x64

6

Setting Fi...ng.mp4

windows10-2004-x64

6

Setting Fi...ng.mp4

windows10-2004-x64

6

Setting Fi...eo.mp4

windows10-2004-x64

6

Setting Fi...d.docx

windows10-2004-x64

1

Setting Fi...l.docx

windows10-2004-x64

1

Analysis

  • max time kernel
    29s
  • max time network
    27s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/08/2023, 13:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Setting File/MINI KeyBoard/MINI KeyBoard-英文/MINI KeyBoard.exe

  • Size

    212KB

  • MD5

    1a6f2e8b118d586578026dda3c072000

  • SHA1

    f0304adad4599a027bd4c789a0d62fc15c20bdef

  • SHA256

    4ae53d3a40921e4f57444c489fa1b38fe91a2e907feda17630450fc97a7cd7b1

  • SHA512

    8542345d80f1d601f40f38d20d287528fda35cdf4465cb71f1d57e5637c8ab3ca85f69e5b9f41b1c71684d1cd0b58fcf297a9b05d34a4941d43da3f634e1b74a

  • SSDEEP

    3072:xFGK8Gi/YpnOVjKRAPW9MLy5oUle3QhazcNfEtGr02v5bk1uHgxqDWwf/Ypi7EV9:HGmR0YJ0yBcyryuSd0QrV/+rN

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Setting File\MINI KeyBoard\MINI KeyBoard-英文\MINI KeyBoard.exe
    "C:\Users\Admin\AppData\Local\Temp\Setting File\MINI KeyBoard\MINI KeyBoard-英文\MINI KeyBoard.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    PID:3024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3024-133-0x0000000074600000-0x0000000074DB0000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/3024-134-0x0000000000080000-0x00000000000BA000-memory.dmp

    Filesize

    232KB

    Download

  • memory/3024-135-0x0000000005180000-0x0000000005724000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/3024-136-0x0000000004A90000-0x0000000004B22000-memory.dmp

    Filesize

    584KB

    Download

  • memory/3024-137-0x0000000004A40000-0x0000000004A52000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3024-138-0x0000000004D20000-0x0000000004D30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3024-139-0x0000000005040000-0x000000000504A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3024-140-0x0000000005140000-0x0000000005148000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3024-141-0x0000000004D20000-0x0000000004D30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3024-142-0x0000000074600000-0x0000000074DB0000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/3024-143-0x0000000004D20000-0x0000000004D30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3024-144-0x0000000004D20000-0x0000000004D30000-memory.dmp

    Filesize

    64KB

    Download