Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

TOYOTA CHA...RS.zip

windows7-x64

1

TOYOTA CHA...RS.zip

windows10-2004-x64

1

art/sound/...D.json

windows7-x64

3

art/sound/...D.json

windows10-2004-x64

3

art/sound/...D.json

windows7-x64

3

art/sound/...D.json

windows10-2004-x64

3

art/sound/...D.json

windows7-x64

3

art/sound/...D.json

windows10-2004-x64

3

art/sound/...52.wav

windows7-x64

1

art/sound/...52.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...26.wav

windows7-x64

1

art/sound/...26.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...05.wav

windows7-x64

1

art/sound/...05.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...89.wav

windows7-x64

1

art/sound/...89.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...80.wav

windows7-x64

1

art/sound/...80.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

art/sound/...76.wav

windows7-x64

1

art/sound/...76.wav

windows10-2004-x64

6

art/sound/..._P.wav

windows7-x64

1

art/sound/..._P.wav

windows10-2004-x64

6

Analysis

  • max time kernel
    141s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04/05/2024, 21:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    art/sound/engine/0BE1F1A5405C187702AEE893B40ABF5F/EXH_1289_P.wav

  • Size

    190KB

  • MD5

    5935469887a4ee7e15c0a1035eba4cb1

  • SHA1

    aee993316750107b52ea86ed71836517df8f0e60

  • SHA256

    dafdcbef8ab2123360aa8e4b400812eaa941c9ef99384a7b744a3818eed9c155

  • SHA512

    f9c97c46a59046a466660e53e0e20f31d87656dc88ba735db7c611046d104d9205e1de56d4758afb2ca7d1ed71b758e1132ac10248e6ae99f2959a9876254238

  • SSDEEP

    3072:fYO4q56z8epBLq7xyF60Mr7jWsrUsELgiL+aY1+55h3:f7FDesxK6nKbsAn+a5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\art\sound\engine\0BE1F1A5405C187702AEE893B40ABF5F\EXH_1289_P.wav"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1040-5-0x000000013F8C0000-0x000000013F9B8000-memory.dmp

    Filesize

    992KB

    Download

  • memory/1040-6-0x000007FEFAB80000-0x000007FEFABB4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/1040-8-0x000007FEFB370000-0x000007FEFB388000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1040-9-0x000007FEFACE0000-0x000007FEFACF7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1040-13-0x000007FEF7050000-0x000007FEF706D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/1040-12-0x000007FEF7070000-0x000007FEF7081000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-11-0x000007FEF7090000-0x000007FEF70A7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1040-10-0x000007FEF7F40000-0x000007FEF7F51000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-7-0x000007FEF6140000-0x000007FEF63F4000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/1040-14-0x000007FEF6860000-0x000007FEF6871000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-16-0x000007FEF4E90000-0x000007FEF5090000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/1040-50-0x000007FEF4690000-0x000007FEF46A6000-memory.dmp

    Filesize

    88KB

    Download

  • memory/1040-49-0x000007FEF46B0000-0x000007FEF46C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-48-0x000007FEF46D0000-0x000007FEF46E1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-44-0x000007FEF4750000-0x000007FEF48CA000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/1040-43-0x000007FEF48D0000-0x000007FEF48E2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1040-42-0x000007FEF48F0000-0x000007FEF4901000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-41-0x000007FEF4930000-0x000007FEF4945000-memory.dmp

    Filesize

    84KB

    Download

  • memory/1040-40-0x000007FEF4950000-0x000007FEF4966000-memory.dmp

    Filesize

    88KB

    Download

  • memory/1040-39-0x000007FEF4970000-0x000007FEF4981000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-38-0x000007FEF4990000-0x000007FEF49BF000-memory.dmp

    Filesize

    188KB

    Download

  • memory/1040-37-0x000007FEFAEC0000-0x000007FEFAED0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/1040-36-0x000007FEF4BB0000-0x000007FEF4BC2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/1040-34-0x000007FEF4BF0000-0x000007FEF4C13000-memory.dmp

    Filesize

    140KB

    Download

  • memory/1040-33-0x000007FEF4C20000-0x000007FEF4C37000-memory.dmp

    Filesize

    92KB

    Download

  • memory/1040-32-0x000007FEF4C40000-0x000007FEF4C64000-memory.dmp

    Filesize

    144KB

    Download

  • memory/1040-30-0x000007FEF4CA0000-0x000007FEF4CF6000-memory.dmp

    Filesize

    344KB

    Download

  • memory/1040-29-0x000007FEF4D00000-0x000007FEF4D11000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-28-0x000007FEF4D20000-0x000007FEF4D8F000-memory.dmp

    Filesize

    444KB

    Download

  • memory/1040-15-0x000007FEF5090000-0x000007FEF613B000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/1040-47-0x000007FEF46F0000-0x000007FEF4701000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-46-0x000007FEF4710000-0x000007FEF4724000-memory.dmp

    Filesize

    80KB

    Download

  • memory/1040-45-0x000007FEF4730000-0x000007FEF4743000-memory.dmp

    Filesize

    76KB

    Download

  • memory/1040-35-0x000007FEF4BD0000-0x000007FEF4BE1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-31-0x000007FEF4C70000-0x000007FEF4C98000-memory.dmp

    Filesize

    160KB

    Download

  • memory/1040-25-0x000007FEF4E30000-0x000007FEF4E48000-memory.dmp

    Filesize

    96KB

    Download

  • memory/1040-24-0x000007FEF4E50000-0x000007FEF4E61000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-23-0x000007FEF4E70000-0x000007FEF4E8B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/1040-22-0x000007FEF6770000-0x000007FEF6781000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-21-0x000007FEF6790000-0x000007FEF67A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-20-0x000007FEF67B0000-0x000007FEF67C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/1040-18-0x000007FEF67F0000-0x000007FEF6811000-memory.dmp

    Filesize

    132KB

    Download

  • memory/1040-27-0x000007FEF4D90000-0x000007FEF4DF7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/1040-17-0x000007FEF6820000-0x000007FEF685F000-memory.dmp

    Filesize

    252KB

    Download

  • memory/1040-26-0x000007FEF4E00000-0x000007FEF4E30000-memory.dmp

    Filesize

    192KB

    Download

  • memory/1040-19-0x000007FEF67D0000-0x000007FEF67E8000-memory.dmp

    Filesize

    96KB

    Download