Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
19/06/2024, 20:24
Static task
static1
Behavioral task
behavioral1
Sample
33b1b82311f8949efc4fb2124de23316c96108008e98283715b4c78860f080a8.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
33b1b82311f8949efc4fb2124de23316c96108008e98283715b4c78860f080a8.exe
Resource
win10v2004-20240508-en
General
-
Target
33b1b82311f8949efc4fb2124de23316c96108008e98283715b4c78860f080a8.exe
-
Size
1.3MB
-
MD5
44ada646f2c1eb716028fd9a5f2fe4fe
-
SHA1
4084c56c7a939ab8212b6a7623e434556ed2e67d
-
SHA256
33b1b82311f8949efc4fb2124de23316c96108008e98283715b4c78860f080a8
-
SHA512
fcd285c25648e3a25cd9a482958bc7e72000cd22a2b60cf7238fcd4ba7d005faf1c00a278eb9a058c4da6d20b104610d09ad5712ed1d009ec5af3e3c636bafd2
-
SSDEEP
24576:HQwh8+L6VMRCPU6CENltmVVdpx7fLrQWd:HnhD6ZU6CENlc7dpJLrQWd
Malware Config
Signatures
-
Drops file in System32 directory 1 IoCs
description ioc Process File opened for modification C:\Windows\System32\alg.exe 33b1b82311f8949efc4fb2124de23316c96108008e98283715b4c78860f080a8.exe -
Suspicious use of AdjustPrivilegeToken 1 IoCs
description pid Process Token: SeTakeOwnershipPrivilege 2076 33b1b82311f8949efc4fb2124de23316c96108008e98283715b4c78860f080a8.exe