Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

NEW PO LIS...Y.xlam

windows7-x64

10

NEW PO LIS...Y.xlam

windows10-2004-x64

1

Analysis

  • max time kernel
    132s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/08/2023, 18:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEW PO LIST 02009 GREEN VALLEY.xlam

  • Size

    672KB

  • MD5

    33e8fb7aa9f005ccb2e9fb681f087366

  • SHA1

    b45c204899eb12874dca86cc7b4e12af7dbe5dba

  • SHA256

    d300bd3ed7461b1c05c983a03ab34d07e23f8233bebab33c52631303de624c1a

  • SHA512

    18750e93e945e3f850d314ab5c3f6eebeccf3c552b6da0fb5b195f17e6cdef96521535475c8a912ab8da570fc78228b7601dbe99ff4cff9853bb2f51a03e9d1e

  • SSDEEP

    12288:d0dNkjFUgZAurY/a93VUmy8GQxMi4T+0J852WWqoq7lHoyPm3MywDcTYIj1CsB:2Eb0mycMiY+yI2WWylHo0mhYW19B

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\NEW PO LIST 02009 GREEN VALLEY.xlam"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    PID:2660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2660-0-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-1-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-4-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-3-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-6-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-5-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-7-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-2-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-8-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-9-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-10-0x00007FFCFF430000-0x00007FFCFF440000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-11-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-12-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-15-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-14-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-16-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-13-0x00007FFCFF430000-0x00007FFCFF440000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-17-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-18-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-20-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-21-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-22-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-23-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-24-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-25-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-29-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-46-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-47-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-48-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-49-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-50-0x00007FFD015F0000-0x00007FFD01600000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2660-51-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-52-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2660-53-0x00007FFD41570000-0x00007FFD41765000-memory.dmp

    Filesize

    2.0MB

    Download