Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

ItsOnFire.apk

android-9-x86

ItsOnFire.apk

android-10-x64

ItsOnFire.apk

android-11-x64

1

baseline.prof

windows7-x64

3

baseline.prof

windows10-2004-x64

3

baseline.profm

windows7-x64

3

baseline.profm

windows10-2004-x64

3

damageshelter.ogg

windows7-x64

1

damageshelter.ogg

windows10-2004-x64

7

invaderexplode.ogg

windows7-x64

1

invaderexplode.ogg

windows10-2004-x64

7

oh.ogg

windows7-x64

1

oh.ogg

windows10-2004-x64

7

playerexplode.ogg

windows7-x64

1

playerexplode.ogg

windows10-2004-x64

7

shoot.ogg

windows7-x64

1

shoot.ogg

windows10-2004-x64

7

uh.ogg

windows7-x64

1

uh.ogg

windows10-2004-x64

7

Resubmissions

03/10/2023, 14:56

231003-sbdm7scb8z 7

03/10/2023, 14:35

231003-rx4abadf82 7

02/10/2023, 22:39

231002-2k417afa8s 7

02/10/2023, 21:20

231002-z68v6aeg3z 7

Analysis

  • max time kernel
    142s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2023, 14:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    damageshelter.ogg

  • Size

    16KB

  • MD5

    26df32d00fe1e5a754c43590eca08b8a

  • SHA1

    e2061ea74213ee1fa73e62f4cb00e5ca2d498b17

  • SHA256

    49eff40d58068528f8a4aeaef67027fa308f3d4b75a8e5e1c572d1fbfa5f710d

  • SHA512

    94e9859be87afd04b7eb4347530f00d54cd9e7f6e80d545fbc374374dbfb100a39997ecd4f4af09bfda5e4a4635f48dcac85abc833724728df3a4f04d0bfe899

  • SSDEEP

    192:XKv+FWxZknNi8XWWwbMIbkrk7lQ719rm663DIIIIIxyIIIII+ZF2HU39n8HUqUTa:XKqWQUCMb6k7iBZ634SIw9nrYvws

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 9 IoCs
  • Suspicious use of SendNotifyMessage 8 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\damageshelter.ogg"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:3052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3052-5-0x000000013F880000-0x000000013F978000-memory.dmp

    Filesize

    992KB

    Download

  • memory/3052-6-0x000007FEF7600000-0x000007FEF7634000-memory.dmp

    Filesize

    208KB

    Download

  • memory/3052-7-0x000007FEF5CD0000-0x000007FEF5F84000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/3052-8-0x000007FEFB610000-0x000007FEFB628000-memory.dmp

    Filesize

    96KB

    Download

  • memory/3052-9-0x000007FEF7650000-0x000007FEF7667000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3052-10-0x000007FEF6EE0000-0x000007FEF6EF1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-11-0x000007FEF6EC0000-0x000007FEF6ED7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3052-12-0x000007FEF6EA0000-0x000007FEF6EB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-13-0x000007FEF6A80000-0x000007FEF6A9D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/3052-14-0x000007FEF68A0000-0x000007FEF68B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-15-0x000007FEF5AD0000-0x000007FEF5CD0000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/3052-16-0x000007FEF6860000-0x000007FEF689F000-memory.dmp

    Filesize

    252KB

    Download

  • memory/3052-17-0x000007FEF4A20000-0x000007FEF5ACB000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/3052-27-0x000007FEF4980000-0x000007FEF49E7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/3052-32-0x000007FEF4800000-0x000007FEF4828000-memory.dmp

    Filesize

    160KB

    Download

  • memory/3052-37-0x000007FEF4740000-0x000007FEF4752000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3052-39-0x000007FEF46F0000-0x000007FEF4703000-memory.dmp

    Filesize

    76KB

    Download

  • memory/3052-40-0x000007FEF4570000-0x000007FEF46E8000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/3052-48-0x000007FEF4460000-0x000007FEF4472000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3052-51-0x000007FEF42A0000-0x000007FEF42B4000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3052-55-0x000007FEF4220000-0x000007FEF4236000-memory.dmp

    Filesize

    88KB

    Download

  • memory/3052-54-0x000007FEF4240000-0x000007FEF4251000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-53-0x000007FEF4260000-0x000007FEF4271000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-52-0x000007FEF4280000-0x000007FEF4291000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-50-0x000007FEF42C0000-0x000007FEF42D3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/3052-49-0x000007FEF42E0000-0x000007FEF445A000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/3052-47-0x000007FEF44A0000-0x000007FEF44B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-46-0x000007FEF44C0000-0x000007FEF44D5000-memory.dmp

    Filesize

    84KB

    Download

  • memory/3052-45-0x000007FEF44E0000-0x000007FEF44F6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/3052-44-0x000007FEF4500000-0x000007FEF4511000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-43-0x000007FEF4520000-0x000007FEF454F000-memory.dmp

    Filesize

    188KB

    Download

  • memory/3052-42-0x000007FEF76C0000-0x000007FEF76D0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/3052-41-0x000007FEF4550000-0x000007FEF4567000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3052-38-0x000007FEF4710000-0x000007FEF4731000-memory.dmp

    Filesize

    132KB

    Download

  • memory/3052-36-0x000007FEF4760000-0x000007FEF4771000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-35-0x000007FEF4780000-0x000007FEF47A3000-memory.dmp

    Filesize

    140KB

    Download

  • memory/3052-34-0x000007FEF47B0000-0x000007FEF47C7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/3052-33-0x000007FEF47D0000-0x000007FEF47F4000-memory.dmp

    Filesize

    144KB

    Download

  • memory/3052-31-0x000007FEF4830000-0x000007FEF4886000-memory.dmp

    Filesize

    344KB

    Download

  • memory/3052-30-0x000007FEF4890000-0x000007FEF48EC000-memory.dmp

    Filesize

    368KB

    Download

  • memory/3052-29-0x000007FEF48F0000-0x000007FEF4901000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-28-0x000007FEF4910000-0x000007FEF497F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/3052-26-0x000007FEF49F0000-0x000007FEF4A20000-memory.dmp

    Filesize

    192KB

    Download

  • memory/3052-25-0x000007FEF6300000-0x000007FEF6318000-memory.dmp

    Filesize

    96KB

    Download

  • memory/3052-24-0x000007FEF6320000-0x000007FEF6331000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-23-0x000007FEF6340000-0x000007FEF635B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/3052-22-0x000007FEF6360000-0x000007FEF6371000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-21-0x000007FEF6380000-0x000007FEF6391000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-20-0x000007FEF63A0000-0x000007FEF63B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/3052-19-0x000007FEF63C0000-0x000007FEF63D8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/3052-18-0x000007FEF63E0000-0x000007FEF6401000-memory.dmp

    Filesize

    132KB

    Download