Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
145s -
max time network
152s -
platform
windows11-21h2_x64 -
resource
win11-20240419-en -
resource tags
-
submitted
28/04/2024, 10:49 UTC
General
-
Target
swvv64.sys
-
Size
228KB
-
MD5
38d4705971aa8797bbf154856df90f69
-
SHA1
05fa1fa1b51e7d29b2819470b4dc6fea6f17292b
-
SHA256
de0feedf477d4dfc63563bbc974045d63758459abad87b5fed52e670932ff3f5
-
SHA512
20d2726b7f3eac7ba8390c215d46d392444e32ba4b66333b7f92e87a5b4b7de6a3d26a41808737c076d2a0ec0c07f365f0d9ec76e6fc7f7828fd22ac799dd9ff
-
SSDEEP
6144:sdI5HdbDwdeYTJhreVIqqDL6Mxlom9fivKXape:4IkMahreVNqn6afiCXB
Score
1/10
Malware Config
Signatures
Processes
-
C:\Windows\system32\cmd.execmd /c C:\Users\Admin\AppData\Local\Temp\swvv64.sys1⤵
-
C:\Users\Admin\AppData\Local\Temp\swvv64.sysC:\Users\Admin\AppData\Local\Temp\swvv64.sys2⤵
-
Network
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR -
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
No results found
-
8.8.8.8:538.8.8.8.in-addr.arpadns
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
260KB