Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
143s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system -
submitted
16/08/2023, 07:55
Static task
static1
Behavioral task
behavioral1
Sample
a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c.exe
Resource
win10v2004-20230703-en
General
-
Target
a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c.exe
-
Size
2.1MB
-
MD5
b4bd4a62166034346d1dcc0e37cd34e3
-
SHA1
8fc2b4a1014fbe8f42cf276bbf93194b9ff1b4ee
-
SHA256
a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c
-
SHA512
3c29588b5faa0f28145f8567d41488fe0999c9ed691b75fdd5cc52bba0ca8258cd6e74bf43163a19c36687a164b7c34a9f08a398292c1a4a9b226b4fb10cb007
-
SSDEEP
49152:py/wkuWVz351bxVnkJP0zfscIEytcN+oDZaJLcLXUtgw+VVNKCzR8WCWk:10zXbxVnkJP0zfsjEytq+oDZaJQg+NKF
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 1132 a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 1132 a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c.exe 1132 a88f73d7025f67f04aa74c32304514153c411ef5864e6b260f4f5f5065716a2c.exe