Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

hdlscom3.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    46s
  • max time network
    48s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/03/2024, 16:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    hdlscom3.exe

  • Size

    8.6MB

  • MD5

    2caa816bbdfa51702b67a76a8605ef82

  • SHA1

    bcd5c84f2f2cd2c814d2ba71fa1e4c84a184ae80

  • SHA256

    dfc2cc6b0ac09b5837a495ce2f4bf6a392c2514aacba67360e4b90adc943dd25

  • SHA512

    8040373dda14180203639c9cf880a0cfd4fe9b887147c10c2abe5965ae2451e689bf94bb963928e8ee550908ee55e7e78e040fee2b502afba87f26b660cd8140

  • SSDEEP

    196608:OY0Ap+wQuLgtV0Sd6OdJ5KxRCYjZRqCkSIqKYODNQfAVeb:OY7+PndhsxdiCkSsvNQfAV2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 29 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\hdlscom3.exe
    "C:\Users\Admin\AppData\Local\Temp\hdlscom3.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:1344

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1344-0-0x000001A203BE0000-0x000001A204486000-memory.dmp

    Filesize

    8.6MB

    Download

  • memory/1344-1-0x00007FFEF2680000-0x00007FFEF3141000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1344-2-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-3-0x000001A21F470000-0x000001A21F876000-memory.dmp

    Filesize

    4.0MB

    Download

  • memory/1344-4-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-5-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-6-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-7-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-8-0x000001A221DD0000-0x000001A221E70000-memory.dmp

    Filesize

    640KB

    Download

  • memory/1344-9-0x000001A221E70000-0x000001A221E96000-memory.dmp

    Filesize

    152KB

    Download

  • memory/1344-10-0x000001A2203B0000-0x000001A2203BA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/1344-11-0x000001A2203C0000-0x000001A2203C8000-memory.dmp

    Filesize

    32KB

    Download

  • memory/1344-12-0x000001A2203D0000-0x000001A2203EE000-memory.dmp

    Filesize

    120KB

    Download

  • memory/1344-13-0x00007FFEF2680000-0x00007FFEF3141000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/1344-14-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-15-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-16-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-17-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-18-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1344-19-0x000001A21EA20000-0x000001A21EA30000-memory.dmp

    Filesize

    64KB

    Download