Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

win32.exe

windows7-x64

1

win32.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2023, 00:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    win32.exe

  • Size

    4.0MB

  • MD5

    7106de2b3719fc7f797cce5ef035c44d

  • SHA1

    c7278c1f19134288cdbac235dc74a99956055d0e

  • SHA256

    a7f9f9a08ef74bd799772f180ec9d193d41c0c5a59d8727a748d22cdc08309f8

  • SHA512

    5a8707a808afc941c898c378e960a3aea3f1653f90156fc4f39d8fc904ec2388876ce81363d19754fdfb4abd9152ecd9a8d4fc834c366ef78e1b7c77be0cefb0

  • SSDEEP

    98304:lCQbn9iV8fvJ3XNIXJzooTsB5oJ9++G/IM1SHV/zhw6V:ltBimXJ3XSX+o05CI+2IM10VLhw6V

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\win32.exe
    "C:\Users\Admin\AppData\Local\Temp\win32.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1872-0-0x0000000078520000-0x00000000785C3000-memory.dmp

    Filesize

    652KB

    Download

  • memory/1872-3-0x000000001E000000-0x000000001E29C000-memory.dmp

    Filesize

    2.6MB

    Download

  • memory/1872-7-0x000000001D1A0000-0x000000001D1BA000-memory.dmp

    Filesize

    104KB

    Download

  • memory/1872-10-0x000000001E7A0000-0x000000001E7BE000-memory.dmp

    Filesize

    120KB

    Download

  • memory/1872-14-0x00000000026A0000-0x00000000026AE000-memory.dmp

    Filesize

    56KB

    Download

  • memory/1872-17-0x0000000010000000-0x000000001015E000-memory.dmp

    Filesize

    1.4MB

    Download

  • memory/1872-20-0x000000001D110000-0x000000001D116000-memory.dmp

    Filesize

    24KB

    Download

  • memory/1872-23-0x000000001EA10000-0x000000001EA32000-memory.dmp

    Filesize

    136KB

    Download

  • memory/1872-27-0x000000001EB90000-0x000000001EB99000-memory.dmp

    Filesize

    36KB

    Download

  • memory/1872-31-0x0000000003B00000-0x0000000003C11000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/1872-34-0x0000000002A20000-0x0000000002A2A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/1872-37-0x0000000003240000-0x0000000003245000-memory.dmp

    Filesize

    20KB

    Download

  • memory/1872-40-0x0000000003250000-0x0000000003255000-memory.dmp

    Filesize

    20KB

    Download

  • memory/1872-43-0x0000000003260000-0x0000000003265000-memory.dmp

    Filesize

    20KB

    Download

  • memory/1872-46-0x0000000003270000-0x0000000003275000-memory.dmp

    Filesize

    20KB

    Download

  • memory/1872-49-0x0000000003280000-0x0000000003285000-memory.dmp

    Filesize

    20KB

    Download

  • memory/1872-52-0x0000000003290000-0x0000000003295000-memory.dmp

    Filesize

    20KB

    Download

  • memory/1872-55-0x00000000032A0000-0x00000000032A6000-memory.dmp

    Filesize

    24KB

    Download

  • memory/1872-58-0x00000000032B0000-0x00000000032B7000-memory.dmp

    Filesize

    28KB

    Download

  • memory/1872-61-0x00000000032C0000-0x00000000032C7000-memory.dmp

    Filesize

    28KB

    Download