Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

4

6b7c4ce541...34.iso

windows7-x64

3

6b7c4ce541...34.iso

windows10-2004-x64

3

SD 212 - L...~0.pdf

windows7-x64

3

SD 212 - L...~0.pdf

windows10-2004-x64

3

[INDONESIA...cx.exe

windows7-x64

10

[INDONESIA...cx.exe

windows10-2004-x64

10

wwlib.dll

windows7-x64

10

wwlib.dll

windows10-2004-x64

10

~[INDONESI...23.doc

windows7-x64

4

~[INDONESI...23.doc

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/08/2024, 13:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6b7c4ce5419e7cde80856a85559203dca5219d05115cdd6c1598f2e789149c34.iso

  • Size

    2.6MB

  • MD5

    98beb20ef1e4d629965c9132be8feb07

  • SHA1

    1622f5f045c2008d474e533187f5d13ec73d8e6e

  • SHA256

    6b7c4ce5419e7cde80856a85559203dca5219d05115cdd6c1598f2e789149c34

  • SHA512

    3ca8f4ecc40f567deacae3a2238a33d8b79515cd1dcfa6a536b1bd853194b3a2cdcc84412b986aa412e9c6a4ddaec57393da3c2e0a82bff0dfe2bd800cbc824f

  • SSDEEP

    24576:zD3R5CY2E7+oboYHIqNbOCCKbUUkLqi1ur5R:ztAY2UUZq5QKmlu1

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\6b7c4ce5419e7cde80856a85559203dca5219d05115cdd6c1598f2e789149c34.iso
    1⤵
    • Modifies registry class
    • Suspicious use of AdjustPrivilegeToken
    PID:2008

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads