Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    5s
  • max time network
    0s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    10/08/2024, 21:25

General

  • Target

    notepad.exe.lnk

  • Size

    1KB

  • MD5

    d4419edfbfdf7468bb59d50dfde1a85d

  • SHA1

    af9fe11ea961650732cf709cf46236541d47a9f7

  • SHA256

    44f30a59722f83f6d3f11ec571357fdaf75800cff7db8d7909584b85c76c7df3

  • SHA512

    6e482cb4ed26d01fdc7af31cacef7521e4e44983839566c5932f553c7ffe24a78446162552d49c5c73ef5845d5619f74f86ff92ce73ca5dc4c3a20c4eafc4bb9

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\notepad.exe.lnk
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2328
    • C:\Windows\System32\notepad.exe
      "C:\Windows\System32\notepad.exe"
      2⤵
        PID:2340

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads