Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

45eec4959b...72.exe

windows7-x64

1

45eec4959b...72.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    20s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 09:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    45eec4959be6ec67e5ed9fa18e02e172.exe

  • Size

    102KB

  • MD5

    45eec4959be6ec67e5ed9fa18e02e172

  • SHA1

    379fb1f129d7043537c719cdf53e42a8f2eaab24

  • SHA256

    b46b5657118ecb66cbe08afc47ee7a58d8d6ad5ded89e62a423c6d00c39d0c12

  • SHA512

    59ed26520bc0c412ed534909c2d596be70ea47965c79383066d69785769df38848893cb52a200c813119e72fc4b8afa4ba452a635746f0a9484ccf8b1d65a165

  • SSDEEP

    3072:IGmfrDZWo5l/UGRcxJhhWdZYOcL3n4/P:IGQR5Z+YPbc

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\45eec4959be6ec67e5ed9fa18e02e172.exe
    "C:\Users\Admin\AppData\Local\Temp\45eec4959be6ec67e5ed9fa18e02e172.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1476-0-0x0000000000360000-0x0000000000380000-memory.dmp

    Filesize

    128KB

    Download

  • memory/1476-1-0x00000000748A0000-0x0000000074F8E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1476-2-0x0000000004C60000-0x0000000004CA0000-memory.dmp

    Filesize

    256KB

    Download

  • memory/1476-5-0x00000000748A0000-0x0000000074F8E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1476-6-0x0000000004C60000-0x0000000004CA0000-memory.dmp

    Filesize

    256KB

    Download