Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
89s -
max time network
124s -
platform
windows10-2004_x64 -
resource
win10v2004-20231222-en -
resource tags
arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system -
submitted
22/12/2023, 01:08
Behavioral task
behavioral1
Sample
/Client.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
/Client.exe
Resource
win10v2004-20231215-en
Behavioral task
behavioral3
Sample
/getsetup.exe
Resource
win7-20231215-en
Behavioral task
behavioral4
Sample
/getsetup.exe
Resource
win10v2004-20231215-en
Behavioral task
behavioral5
Sample
/getsetup.hb
Resource
ubuntu1804-amd64-20231222-en
Behavioral task
behavioral6
Sample
/ƶ_C.exe
Resource
win7-20231215-en
Behavioral task
behavioral7
Sample
/ƶ_C.exe
Resource
win10v2004-20231222-en
General
-
Target
/ƶ_C.exe
-
Size
348KB
-
MD5
8bc8598b3f168a1b4a5989f15d4fb1e4
-
SHA1
60649fd9977e446d259d9088951f0b60c11c74f3
-
SHA256
7d5e432b17b6e39cb71c0535ee48e211f5586b41e7440996a42093c689bdadf6
-
SHA512
1517ae3b064c68a529d1750b74eb730d935efbaa7c34903e38434e6f48aeacca35ac9b912203a371b420242c7dfa8a9cb2c203cd602b2fd8f454d5fa69ff6110
-
SSDEEP
6144:z7Vfiw4kd96ii2gftMMiYqTawGpFhsbdsB1UqzRIrZf6iDT:z7Fiw4qfTktMMitTaq
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 2632 ƶ_C.exe -
Suspicious use of SendNotifyMessage 1 IoCs
pid Process 2632 ƶ_C.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 2632 ƶ_C.exe 2632 ƶ_C.exe