Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
142s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20230915-en -
resource tags
arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system -
submitted
12/10/2023, 00:40
Static task
static1
Behavioral task
behavioral1
Sample
89ad3b68ab7a888a0b73209f78ebd416f900cbf030e27d9da671b83476e30dd0.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
89ad3b68ab7a888a0b73209f78ebd416f900cbf030e27d9da671b83476e30dd0.exe
Resource
win10v2004-20230915-en
General
-
Target
89ad3b68ab7a888a0b73209f78ebd416f900cbf030e27d9da671b83476e30dd0.exe
-
Size
216KB
-
MD5
9da82bf41206096da830197efcc6d1b4
-
SHA1
a21017329cbfab3dc2afd96bcc54e273a7917aaa
-
SHA256
89ad3b68ab7a888a0b73209f78ebd416f900cbf030e27d9da671b83476e30dd0
-
SHA512
66152d91dd58f3ae5d54fc1146ab1ad2c74a5832b0d01ae168764521c8fa47cdf812737abb9efcf562b740ec9a9b1dc0065a6000b5da505dda43b6b0867cb33a
-
SSDEEP
3072:WYiKr2SzzHWLNkIzltTB4ony0cZ0Rj/U+YwFrK5W0Csg71xI108I:9rbzHWOUTrcyPYamEsgQuH
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 3640 89ad3b68ab7a888a0b73209f78ebd416f900cbf030e27d9da671b83476e30dd0.exe