Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

New Landings.zip

windows7-x64

1

New Landings.zip

windows10-2004-x64

1

across.to/bridge.html

windows7-x64

1

across.to/bridge.html

windows10-2004-x64

1

affitrum.ai/app.html

windows7-x64

1

affitrum.ai/app.html

windows10-2004-x64

1

affitrum.a...min.js

windows7-x64

3

affitrum.a...min.js

windows10-2004-x64

3

affitrum.a...aos.js

windows7-x64

3

affitrum.a...aos.js

windows10-2004-x64

3

affitrum.a...min.js

windows7-x64

3

affitrum.a...min.js

windows10-2004-x64

3

affitrum.a...tom.js

windows7-x64

3

affitrum.a...tom.js

windows10-2004-x64

3

affitrum.a...min.js

windows7-x64

3

affitrum.a...min.js

windows10-2004-x64

3

affitrum.a...ter.js

windows7-x64

3

affitrum.a...ter.js

windows10-2004-x64

3

affitrum.a...min.js

windows7-x64

3

affitrum.a...min.js

windows10-2004-x64

3

affitrum.a...00.ps1

windows7-x64

3

affitrum.a...00.ps1

windows10-2004-x64

3

claim.avai...x.html

windows7-x64

1

claim.avai...x.html

windows10-2004-x64

1

magiceden....t.html

windows7-x64

1

magiceden....t.html

windows10-2004-x64

1

magiceden....n.html

windows7-x64

1

magiceden....n.html

windows10-2004-x64

1

magiceden....min.js

windows7-x64

3

magiceden....min.js

windows10-2004-x64

3

magiceden....ary.js

windows7-x64

3

magiceden....ary.js

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/07/2024, 06:07 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    affitrum.ai/assets/js/custom.js

  • Size

    6KB

  • MD5

    14ca5e73d1f6364d1bf1f0b59182a2f0

  • SHA1

    965ab95f57d79d77258666f96c9495ddde6b9d62

  • SHA256

    62eb20a1332ad05908f8dbded4d28320b9f0b018e5a21986aaeb1deb951a9843

  • SHA512

    83778a7b41629bd29a9a37321019b8bd5b73f987ab7f8a0e1842341e2a035ce1d6d14e813209ce9f7a174e5ef17388f6e41ac09d99719dc9b6a6f086d932b879

  • SSDEEP

    96:dZwRjWM7015vPK+M31p5ZnWSZTmlcbzXCs:wDtppmU7

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\affitrum.ai\assets\js\custom.js
    1⤵
      PID:888

    Network

    • flag-us
      DNS
      8.8.8.8.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      8.8.8.8.in-addr.arpa
      IN PTR
      Response
      8.8.8.8.in-addr.arpa
      IN PTR
      dnsgoogle
    • flag-us
      DNS
      20.160.190.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      20.160.190.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      25.140.123.92.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      25.140.123.92.in-addr.arpa
      IN PTR
      Response
      25.140.123.92.in-addr.arpa
      IN PTR
      a92-123-140-25deploystaticakamaitechnologiescom
    • flag-us
      DNS
      57.169.31.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      57.169.31.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      26.165.165.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      26.165.165.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      15.164.165.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      15.164.165.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      192.142.123.92.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      192.142.123.92.in-addr.arpa
      IN PTR
      Response
      192.142.123.92.in-addr.arpa
      IN PTR
      a92-123-142-192deploystaticakamaitechnologiescom
    • flag-us
      DNS
      99.58.20.217.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      99.58.20.217.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      31.243.111.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      31.243.111.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      240.221.184.93.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      240.221.184.93.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      209.143.182.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      209.143.182.52.in-addr.arpa
      IN PTR
      Response
    No results found
    • 8.8.8.8:53
      8.8.8.8.in-addr.arpa
      dns
      66 B
       90 B
       1
      1

      DNS Request

      8.8.8.8.in-addr.arpa

    • 8.8.8.8:53
      20.160.190.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      20.160.190.20.in-addr.arpa

    • 8.8.8.8:53
      25.140.123.92.in-addr.arpa
      dns
      72 B
       137 B
       1
      1

      DNS Request

      25.140.123.92.in-addr.arpa

    • 8.8.8.8:53
      57.169.31.20.in-addr.arpa
      dns
      71 B
       157 B
       1
      1

      DNS Request

      57.169.31.20.in-addr.arpa

    • 8.8.8.8:53
      26.165.165.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      26.165.165.52.in-addr.arpa

    • 8.8.8.8:53
      15.164.165.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      15.164.165.52.in-addr.arpa

    • 8.8.8.8:53
      192.142.123.92.in-addr.arpa
      dns
      73 B
       139 B
       1
      1

      DNS Request

      192.142.123.92.in-addr.arpa

    • 8.8.8.8:53
      99.58.20.217.in-addr.arpa
      dns
      71 B
       131 B
       1
      1

      DNS Request

      99.58.20.217.in-addr.arpa

    • 8.8.8.8:53
      31.243.111.52.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      31.243.111.52.in-addr.arpa

    • 8.8.8.8:53
      240.221.184.93.in-addr.arpa
      dns
      73 B
       144 B
       1
      1

      DNS Request

      240.221.184.93.in-addr.arpa

    • 8.8.8.8:53
      209.143.182.52.in-addr.arpa
      dns
      73 B
       147 B
       1
      1

      DNS Request

      209.143.182.52.in-addr.arpa

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.