Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
5Static
static
3Slinky.gg ...er.exe
windows7-x64
1Slinky.gg ...er.exe
windows10-2004-x64
1Slinky.gg ...d).exe
windows7-x64
1Slinky.gg ...d).exe
windows10-2004-x64
1Slinky.gg ...ry.dll
windows7-x64
5Slinky.gg ...ry.dll
windows10-2004-x64
5Slinky.gg ...ok.dll
windows7-x64
1Slinky.gg ...ok.dll
windows10-2004-x64
1Slinky.gg ...ck.bat
windows7-x64
1Slinky.gg ...ck.bat
windows10-2004-x64
1Analysis
-
max time kernel
149s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240419-en -
resource tags
arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system -
submitted
29/06/2024, 17:59
Static task
static1
Behavioral task
behavioral1
Sample
Slinky.gg (Cracked)/Loader.exe
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral2
Sample
Slinky.gg (Cracked)/Loader.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Slinky.gg (Cracked)/Slinky (Cracked).exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral4
Sample
Slinky.gg (Cracked)/Slinky (Cracked).exe
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
Slinky.gg (Cracked)/slinky_library.dll
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral6
Sample
Slinky.gg (Cracked)/slinky_library.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
Slinky.gg (Cracked)/slinkyhook.dll
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral8
Sample
Slinky.gg (Cracked)/slinkyhook.dll
Resource
win10v2004-20240611-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
Slinky.gg (Cracked)/start-quick.bat
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral10
Sample
Slinky.gg (Cracked)/start-quick.bat
Resource
win10v2004-20240226-en
windows10-2004-x64
General
-
Target
Slinky.gg (Cracked)/Loader.exe
-
Size
18.4MB
-
MD5
a2223005e6d186689577e5a2b785a16b
-
SHA1
1075e177247880d3e1ec940623500bf2e9b275e3
-
SHA256
cef5b60321f17991400a19072052535638c0a5c02d338234686552deadeea82e
-
SHA512
073f8e682d2468bfe7d55b82cf0ff5dafd2754da2813de2116551e2811809debba7f06c5d8ed5901a59703bfb306fd5fd05d9d1e797bf9e7887826709c6993c6
-
SSDEEP
393216:cKRqNWNKROYkhkpXorNv+oXsDS3LNK3HOU6x0pW/lJktSrZPLAB:/ANWKRrpYrNvou7NK3uU6E29dPL
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe 2328 Loader.exe