Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
121s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system -
submitted
05/04/2024, 17:58
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
1243e1d85c80ae7a99531f625125528913f86956c3c630d39b87ad49ad2a8cbe.exe
Resource
win7-20240215-en
2 signatures
150 seconds
General
-
Target
1243e1d85c80ae7a99531f625125528913f86956c3c630d39b87ad49ad2a8cbe.exe
-
Size
716KB
-
MD5
44da4b8851139fca04cf67abbe9a2449
-
SHA1
febf59a80f78f13dd7370e35c71ee02f7faa1427
-
SHA256
1243e1d85c80ae7a99531f625125528913f86956c3c630d39b87ad49ad2a8cbe
-
SHA512
787fb591d843e615581e7bbf3a482b9f297e83ea198f855bafc6013ff231185ae3e2ef656c6280b55b93745837f79907e9ccb7465c768675f37f554044aa61f1
-
SSDEEP
12288:o3P/aK2vB+K3Dbif4YAJ93y1NrLiLtJ8nBxu7DCOzRq8DvQgqAbhI:o/CKAB7Hofe3y1sInB2COzRq8DvFqt
Score
5/10
Malware Config
Signatures
-
Drops file in System32 directory 1 IoCs
description ioc Process File opened for modification C:\Windows\System32\alg.exe 1243e1d85c80ae7a99531f625125528913f86956c3c630d39b87ad49ad2a8cbe.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeTakeOwnershipPrivilege 2328 1243e1d85c80ae7a99531f625125528913f86956c3c630d39b87ad49ad2a8cbe.exe