Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

hydra-5.4-....8.dll

windows7-x64

3

hydra-5.4-....8.dll

windows10-2004-x64

3

hydra-5.4-....8.dll

windows7-x64

3

hydra-5.4-....8.dll

windows10-2004-x64

3

hydra-5.4-...n1.dll

windows7-x64

3

hydra-5.4-...n1.dll

windows10-2004-x64

3

hydra-5.4-...ra.exe

windows7-x64

1

hydra-5.4-...ra.exe

windows10-2004-x64

3

hydra-5.4-...or.exe

windows7-x64

1

hydra-5.4-...or.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    16s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    21/08/2024, 03:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    hydra-5.4-win/hydra.exe

  • Size

    180KB

  • MD5

    a372454727710bfdd4950dcfac4c89a4

  • SHA1

    aeddc1b7dd82946ff5b95ce18f7df685bc466354

  • SHA256

    a7eb5c2418100a04c93570fa91dffe320d859540b67005f53b1540641b41f790

  • SHA512

    c3c770118f75f9d5985e6d11107426f11fcdfe5a3f3e2538091c21f9a3b53cc42240e4f2b31268251e571a4abb5da980b8912fdfb5bcc5bfc17f87f84040029d

  • SSDEEP

    3072:mFqQ/UDrOHdks7DNLgo/PmnpurOOrrVXi03YsetlL+xROIzs22+zionA5lei:LIH5PYBroROP2mzei

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\hydra-5.4-win\hydra.exe
    "C:\Users\Admin\AppData\Local\Temp\hydra-5.4-win\hydra.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:600

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/600-0-0x0000000061000000-0x0000000061180000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/600-1-0x0000000000400000-0x0000000000428000-memory.dmp

    Filesize

    160KB

    Download

  • memory/600-2-0x0000000063000000-0x000000006310C000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/600-5-0x0000000061000000-0x0000000061180000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/600-4-0x0000000010000000-0x000000001003A000-memory.dmp

    Filesize

    232KB

    Download