Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
119s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
26/03/2024, 18:18
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
dfcc75f932e6f0ca1f118a64d4e72c59.exe
Resource
win7-20240221-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
dfcc75f932e6f0ca1f118a64d4e72c59.exe
Resource
win10v2004-20240226-en
2 signatures
150 seconds
General
-
Target
dfcc75f932e6f0ca1f118a64d4e72c59.exe
-
Size
37KB
-
MD5
dfcc75f932e6f0ca1f118a64d4e72c59
-
SHA1
b0c1307240282f9103e5977d99bcb61cd90bb6ed
-
SHA256
848dad78e3ee6ac657f85120aea1aff0c7c737e39d9cebac1ecd0494fa7b6bcd
-
SHA512
3c23bf5dc85e8dd3efcff11d93878caa2a03827b656e6d928744ddd338dd0d39fa5666ca8aec52d1e32a3d172d0d9d53a0cba5ecf8a355efef0a32b8b7a06152
-
SSDEEP
768:Ex2T/9il71c0TDgObnUcJG1H2AinLkJ2Wf1R9JXNXls:Ex2T/QTDWcJi2ADJ2WdR9J
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
pid Process 1772 dfcc75f932e6f0ca1f118a64d4e72c59.exe 1772 dfcc75f932e6f0ca1f118a64d4e72c59.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeDebugPrivilege 1772 dfcc75f932e6f0ca1f118a64d4e72c59.exe