Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
120s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
04/01/2024, 20:20
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
41d12e0f6606a0b2a8589497ef8faf02.exe
Resource
win7-20231215-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
41d12e0f6606a0b2a8589497ef8faf02.exe
Resource
win10v2004-20231215-en
2 signatures
150 seconds
General
-
Target
41d12e0f6606a0b2a8589497ef8faf02.exe
-
Size
396KB
-
MD5
41d12e0f6606a0b2a8589497ef8faf02
-
SHA1
5018d6f43ce6c98c4073e68e427a65d4b59c0e15
-
SHA256
02fb3612287d4e125b99f3e7ac5329169730775f343ad98215215a69a5d61cda
-
SHA512
89229ef0d629754471d191257d0dfcc5362f1b279ce07a5c9f03dd23cc9dae67416ec279ae64a4c6f1a3640e08c474e32651c3c7a16055af603c59e79d4e2fab
-
SSDEEP
6144:UnxrP6PTkQV1JXEj22Mi/HY7V56qwjVU5YYtetUX00W6FBL3ou8dc2:UcDXwNH/HY7/xmG5et7qrL3l8
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 3 IoCs
description pid Process Token: SeSecurityPrivilege 2364 41d12e0f6606a0b2a8589497ef8faf02.exe Token: SeSecurityPrivilege 2364 41d12e0f6606a0b2a8589497ef8faf02.exe Token: SeSecurityPrivilege 2364 41d12e0f6606a0b2a8589497ef8faf02.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 2364 41d12e0f6606a0b2a8589497ef8faf02.exe