Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
10Static
static
10BlitzedV12...12.exe
windows7-x64
7BlitzedV12...12.exe
windows10-2004-x64
7BlitzedV12...xe.xml
windows7-x64
3BlitzedV12...xe.xml
windows10-2004-x64
1BlitzedV12...OR.dll
windows7-x64
1BlitzedV12...OR.dll
windows10-2004-x64
1BlitzedV12...hy.dll
windows7-x64
1BlitzedV12...hy.dll
windows10-2004-x64
1BlitzedV12...ed.exe
windows7-x64
10BlitzedV12...ed.exe
windows10-2004-x64
10BlitzedV12...to.dll
windows7-x64
1BlitzedV12...to.dll
windows10-2004-x64
1BlitzedV12...on.dll
windows7-x64
1BlitzedV12...on.dll
windows10-2004-x64
1BlitzedV12...le.exe
windows7-x64
3BlitzedV12...le.exe
windows10-2004-x64
3Analysis
-
max time kernel
136s -
max time network
157s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
14/08/2024, 21:32
Behavioral task
behavioral1
Sample
BlitzedV12/BlitzedGrabberV12.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
BlitzedV12/BlitzedGrabberV12.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
BlitzedV12/BlitzedGrabberV12.exe.xml
Resource
win7-20240704-en
Behavioral task
behavioral4
Sample
BlitzedV12/BlitzedGrabberV12.exe.xml
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
BlitzedV12/Resources/APIFOR.dll
Resource
win7-20240704-en
Behavioral task
behavioral6
Sample
BlitzedV12/Resources/APIFOR.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
BlitzedV12/Resources/Anarchy.dll
Resource
win7-20240708-en
Behavioral task
behavioral8
Sample
BlitzedV12/Resources/Anarchy.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral9
Sample
BlitzedV12/Resources/Blitzed.exe
Resource
win7-20240729-en
Behavioral task
behavioral10
Sample
BlitzedV12/Resources/Blitzed.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral11
Sample
BlitzedV12/Resources/BouncyCastle.Crypto.dll
Resource
win7-20240705-en
Behavioral task
behavioral12
Sample
BlitzedV12/Resources/BouncyCastle.Crypto.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral13
Sample
BlitzedV12/Resources/Newtonsoft.Json.dll
Resource
win7-20240708-en
Behavioral task
behavioral14
Sample
BlitzedV12/Resources/Newtonsoft.Json.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral15
Sample
BlitzedV12/Resources/UltraEmbeddable.exe
Resource
win7-20240704-en
Behavioral task
behavioral16
Sample
BlitzedV12/Resources/UltraEmbeddable.exe
Resource
win10v2004-20240802-en
General
-
Target
BlitzedV12/BlitzedGrabberV12.exe.xml
-
Size
320B
-
MD5
c6e6fc3cdec0ad213d9330a9b630fd5c
-
SHA1
ed4278e0e4b9d1b47fbe92ca2f98af62e5d6c027
-
SHA256
96c2db8d8037a20cc6550c935f9a11da70f84a2bc64a1be1807b06bc1bda2492
-
SHA512
37ee70ae328547b684db668ce59c9f7eea672184fb1f5ed41341a0fab84bbe0419f0706742832fc6f1ae78e474cd1d3f5f757fc9c44ed0ca557101a733532e0f
Malware Config
Signatures
Processes
-
C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\BlitzedV12\BlitzedGrabberV12.exe.xml"1⤵PID:3880