Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ProjectRen...in.zip

windows7-x64

1

ProjectRen...in.zip

windows10-2004-x64

1

ProjectRen...mo.sln

windows7-x64

3

ProjectRen...mo.sln

windows10-2004-x64

3

ProjectRen...DME.md

windows7-x64

3

ProjectRen...DME.md

windows10-2004-x64

3

ProjectRen...ner.cs

windows7-x64

3

ProjectRen...ner.cs

windows10-2004-x64

3

ProjectRen...rm1.cs

windows7-x64

3

ProjectRen...rm1.cs

windows10-2004-x64

3

ProjectRen...m1.vbs

windows7-x64

1

ProjectRen...m1.vbs

windows10-2004-x64

1

ProjectRen...ult.cs

windows7-x64

3

ProjectRen...ult.cs

windows10-2004-x64

3

ProjectRen...ory.js

windows7-x64

3

ProjectRen...ory.js

windows10-2004-x64

3

ProjectRen...ets.cs

windows7-x64

3

ProjectRen...ets.cs

windows10-2004-x64

3

ProjectRen...ets.cs

windows7-x64

3

ProjectRen...ets.cs

windows10-2004-x64

3

ProjectRen...ram.cs

windows7-x64

3

ProjectRen...ram.cs

windows10-2004-x64

3

ProjectRen...csproj

windows7-x64

3

ProjectRen...csproj

windows10-2004-x64

3

ProjectRen...nfo.cs

windows7-x64

3

ProjectRen...nfo.cs

windows10-2004-x64

3

ProjectRen...er.vbs

windows7-x64

1

ProjectRen...er.vbs

windows10-2004-x64

1

ProjectRen...es.vbs

windows7-x64

1

ProjectRen...es.vbs

windows10-2004-x64

1

ProjectRen...ner.cs

windows7-x64

3

ProjectRen...ner.cs

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    103s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/07/2024, 10:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ProjectRencifyPhasmo-main/UnityTester/ProjectRencifyPhasmo.csproj

  • Size

    8KB

  • MD5

    d8c9b1f20aa73e72eb4be8ba31b59dc5

  • SHA1

    1fb1bdaa23411fd4a682663d61d1a06269365c04

  • SHA256

    acf4446b853910e69477c238e98655491f1987fe29bbd40c374199b43db62927

  • SHA512

    966932812591904da4d3cfa603650fdeefdd4cf2422770ed5a4230d4f3b7d679967d4249846ac3075b5e6b35a8990b1523995732b98a7871c5f1c3ac8b1443ae

  • SSDEEP

    96:7YWnpu5fghoZhKzcfhKz7xia4iBuxp2uxpY4uxpWuxpWnWbhFEXWpTUSVuE5vmAY:7WIiZoQx9INYWbJlHeyuTYtn54

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\ProjectRencifyPhasmo-main\UnityTester\ProjectRencifyPhasmo.csproj
    1⤵
    • Modifies registry class
    PID:3672
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:3208

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads