Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

CC-NIGHT-main.zip

windows10-1703-x64

1

CC-NIGHT-main.zip

windows10-2004-x64

1

CC-NIGHT-main/Readme

windows10-1703-x64

1

CC-NIGHT-main/Readme

windows10-2004-x64

1

CC-NIGHT-m...r.webp

windows10-1703-x64

3

CC-NIGHT-m...r.webp

windows10-2004-x64

3

Analysis

  • max time kernel
    1458s
  • max time network
    1484s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/03/2024, 01:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CC-NIGHT-main.zip

  • Size

    15KB

  • MD5

    c58e4cc7d0a55b488ed0d39e252234ea

  • SHA1

    45b6486596f102e0948818e367910e8a391f4bac

  • SHA256

    eb1c18ef55cc04360c6256528277e54aa6780056274c42c8aec583cd93387d35

  • SHA512

    29d549af2eb9af0ca9e77f4a7949d2761be5c3bac3503e71be1a5a00c1375653a543292a1c370b14fb3718634bcfc67ca9304469e248cc007b6a6804ec843e35

  • SSDEEP

    384:YaltUf/hJz9QEZQRPLwZ+g05gW7lOChtXWCMyGRliOgPF0:YazUZJKEZCUZ4OChBJYYOg90

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Windows\Explorer.exe
    C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\CC-NIGHT-main.zip
    1⤵
      PID:3544
    • C:\Windows\system32\rundll32.exe
      "C:\Windows\system32\rundll32.exe" "C:\Windows\SYSTEM32\EDGEHTML.dll",#141 Microsoft.VCLibs.140.00_8wekyb3d8bbwe
      1⤵
        PID:4808
      • C:\Windows\System32\svchost.exe
        C:\Windows\System32\svchost.exe -k UnistackSvcGroup
        1⤵
        • Suspicious use of AdjustPrivilegeToken
        PID:4860

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/4860-0-0x0000023C45340000-0x0000023C45350000-memory.dmp

        Filesize

        64KB

        Download

      • memory/4860-16-0x0000023C45440000-0x0000023C45450000-memory.dmp

        Filesize

        64KB

        Download

      • memory/4860-32-0x0000023C4D770000-0x0000023C4D771000-memory.dmp

        Filesize

        4KB

        Download

      • memory/4860-34-0x0000023C4D7A0000-0x0000023C4D7A1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/4860-35-0x0000023C4D7A0000-0x0000023C4D7A1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/4860-36-0x0000023C4D8B0000-0x0000023C4D8B1000-memory.dmp

        Filesize

        4KB

        Download