4d63caee8d2c5e50ebb220e6aa593fe852a516e209006ba0a16507907125f46c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

FunGame.apk

android-9-x86

1

Android

windows7-x64

1

Android

windows10-2004-x64

1

Android.manifest

windows7-x64

3

Android.manifest

windows10-2004-x64

3

GameSkins.xml

windows7-x64

1

GameSkins.xml

windows10-2004-x64

1

LobbyData.xml

windows7-x64

1

LobbyData.xml

windows10-2004-x64

1

PokerNewFeatures.xml

windows7-x64

1

PokerNewFeatures.xml

windows10-2004-x64

1

RuntimeIni...s.json

windows7-x64

3

RuntimeIni...s.json

windows10-2004-x64

3

ScriptingA...s.json

windows7-x64

3

ScriptingA...s.json

windows10-2004-x64

3

Settings.xml

windows7-x64

1

Settings.xml

windows10-2004-x64

1

TeenPattiG...ns.xml

windows7-x64

1

TeenPattiG...ns.xml

windows10-2004-x64

1

TeenPattiN...es.xml

windows7-x64

1

TeenPattiN...es.xml

windows10-2004-x64

1

TeenPattiUserData.xml

windows7-x64

1

TeenPattiUserData.xml

windows10-2004-x64

1

UserData.xml

windows7-x64

1

UserData.xml

windows10-2004-x64

1

appbackgroundstheme2d

windows7-x64

1

appbackgroundstheme2d

windows10-2004-x64

1

appbackgro...nifest

windows7-x64

3

appbackgro...nifest

windows10-2004-x64

3

boot.config

windows7-x64

3

boot.config

windows10-2004-x64

3

data.unity3d

windows7-x64

3

Analysis

max time kernel
138s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20231025-en
resource tags

arch:x64arch:x86image:win10v2004-20231025-enlocale:en-usos:windows10-2004-x64system
submitted
16/11/2023, 09:02

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

FunGame.apk

Resource

android-x86-arm-20231023-en

android-9-x86

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Android

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Android

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Android.manifest

Resource

win7-20231023-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral5

Sample

Android.manifest

Resource

win10v2004-20231020-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

GameSkins.xml

Resource

win7-20231025-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral7

Sample

GameSkins.xml

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

LobbyData.xml

Resource

win7-20231023-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral9

Sample

LobbyData.xml

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

PokerNewFeatures.xml

Resource

win7-20231020-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral11

Sample

PokerNewFeatures.xml

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

RuntimeInitializeOnLoads.json

Resource

win7-20231023-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral13

Sample

RuntimeInitializeOnLoads.json

Resource

win10v2004-20231020-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

ScriptingAssemblies.json

Resource

win7-20231023-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral15

Sample

ScriptingAssemblies.json

Resource

win10v2004-20231023-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral16

Sample

Settings.xml

Resource

win7-20231023-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral17

Sample

Settings.xml

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

TeenPattiGameSkins.xml

Resource

win7-20231020-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral19

Sample

TeenPattiGameSkins.xml

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

TeenPattiNewFeatures.xml

Resource

win7-20231025-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral21

Sample

TeenPattiNewFeatures.xml

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

TeenPattiUserData.xml

Resource

win7-20231023-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral23

Sample

TeenPattiUserData.xml

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

UserData.xml

Resource

win7-20231023-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral25

Sample

UserData.xml

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

appbackgroundstheme2d

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

appbackgroundstheme2d

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

appbackgroundstheme2d.manifest

Resource

win7-20231025-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral29

Sample

appbackgroundstheme2d.manifest

Resource

win10v2004-20231023-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

boot.config

Resource

win7-20231020-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral31

Sample

boot.config

Resource

win10v2004-20231023-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

data.unity3d

Resource

win7-20231020-en

windows7-x64

5 signatures

150 seconds

Report Analysis Logs

General

Target

PokerNewFeatures.xml
Size

310B
MD5

fa76d176160cfdcee17418f7acc6800c
SHA1

a8916783d7b8c243e882a4e1b243805183c5b551
SHA256

001a7cb85dcae0c23d23c4214f403bbf91ecb9e4ce92f847033f4669046d3b61
SHA512

59d056026bd572341e75ae7e7bd01078c4d62dc37dbf9e24be881ceb28bfc8faef57fdb7d80fea312dcf9b7ad78d62c220b26557cba48583e6eb0caf479ddf24

Score

1^/10

Malware Config

Signatures

Processes

C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\PokerNewFeatures.xml"
1⤵
PID:4252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4252-0-0x00007FF8BFF50000-0x00007FF8BFF60000-memory.dmp

Filesize
64KB

Download
memory/4252-1-0x00007FF8FFED0000-0x00007FF9000C5000-memory.dmp

Filesize
2.0MB

Download
memory/4252-2-0x00007FF8FDA40000-0x00007FF8FDD09000-memory.dmp

Filesize
2.8MB

Download
memory/4252-3-0x00007FF8BFF50000-0x00007FF8BFF60000-memory.dmp

Filesize
64KB

Download
memory/4252-4-0x00007FF8FFED0000-0x00007FF9000C5000-memory.dmp

Filesize
2.0MB

Download

© 2018-2025

Terms | Privacy