Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

browserData.ps1

windows7-x64

1

browserData.ps1

windows10-2004-x64

1

Resubmissions

09/10/2023, 02:30

231009-czdecahf2s 1

08/10/2023, 23:43

231008-3qj4msah89 1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2023, 02:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    browserData.ps1

  • Size

    3KB

  • MD5

    57252ba067d81cfbe899c0605515e889

  • SHA1

    65ca8ef93d31f3a2a7c6274a890206f15ea155b0

  • SHA256

    a4f643930f7dea2b36b3dcdf3bf572009e3d3f80eb413f7b554f1c0fc1454e2e

  • SHA512

    c118704b30d554038a4bc01a2577346aa3453d97ae20dde9bc90a0526a1468caf8c7e227a6edd26914be068ecd7594c266422ce7e1739a06bad227da52ab8333

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    powershell.exe -ExecutionPolicy bypass -File C:\Users\Admin\AppData\Local\Temp\browserData.ps1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2760

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2760-4-0x000000001B150000-0x000000001B432000-memory.dmp

    Filesize

    2.9MB

    Download

  • memory/2760-5-0x0000000002620000-0x0000000002628000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2760-6-0x000007FEF58C0000-0x000007FEF625D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2760-7-0x0000000002880000-0x0000000002900000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2760-8-0x000007FEF58C0000-0x000007FEF625D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2760-9-0x0000000002880000-0x0000000002900000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2760-10-0x0000000002880000-0x0000000002900000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2760-11-0x0000000002880000-0x0000000002900000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2760-12-0x0000000002880000-0x0000000002900000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2760-13-0x0000000002880000-0x0000000002900000-memory.dmp

    Filesize

    512KB

    Download

  • memory/2760-14-0x000007FEF58C0000-0x000007FEF625D000-memory.dmp

    Filesize

    9.6MB

    Download