Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

The Henry ...on.zip

windows7-x64

3

The Henry ...on.zip

windows10-2004-x64

1

The Henry ...IR.vch

windows7-x64

3

The Henry ...IR.vch

windows10-2004-x64

3

The Henry ...15.dll

windows7-x64

3

The Henry ...15.dll

windows10-2004-x64

3

The Henry ...OPYING

windows7-x64

1

The Henry ...OPYING

windows10-2004-x64

1

The Henry ...PL-2.1

windows7-x64

3

The Henry ...PL-2.1

windows10-2004-x64

3

The Henry ...PL-1.1

windows7-x64

3

The Henry ...PL-1.1

windows10-2004-x64

3

The Henry ...OPYING

windows7-x64

1

The Henry ...OPYING

windows10-2004-x64

1

The Henry ...OPYING

windows7-x64

1

The Henry ...OPYING

windows10-2004-x64

1

The Henry ...32.dll

windows7-x64

3

The Henry ...32.dll

windows10-2004-x64

3

The Henry ...64.dll

windows7-x64

1

The Henry ...64.dll

windows10-2004-x64

1

The Henry ...it.dll

windows7-x64

3

The Henry ...it.dll

windows10-2004-x64

3

The Henry ...se.txt

windows7-x64

1

The Henry ...se.txt

windows10-2004-x64

1

The Henry ...it.txt

windows7-x64

1

The Henry ...it.txt

windows10-2004-x64

1

The Henry ...cp.dll

windows7-x64

3

The Henry ...cp.dll

windows10-2004-x64

3

The Henry ...ry.swf

windows7-x64

3

The Henry ...ry.swf

windows10-2004-x64

3

The Henry ...tM.swf

windows7-x64

3

The Henry ...tM.swf

windows10-2004-x64

3

Resubmissions

25/08/2024, 10:12

240825-l8vvesyeke 3

25/08/2024, 10:07

240825-l5r95aycpa 3

Analysis

  • max time kernel
    359s
  • max time network
    373s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 10:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    The Henry Stickmin Collection/Adobe AIR/Versions/1.0/Resources/adobecp.dll

  • Size

    5.2MB

  • MD5

    a14a7229d88c4dbcfd916b7437f6640e

  • SHA1

    55196b4a80e1ca0ac272795aa918607a982d42e1

  • SHA256

    2aef462048b16547dec95b194dcec3b0793f53e6f345ef5abb997a97eefff29d

  • SHA512

    55f697433c6e42328068c2dfa7a44b9cd784a088979aecbdb63221d4fb66e6263fb7e1b7c0fbb891a77a56ca70b6e75f6c8558ac8a6d394f980c51079d950fbf

  • SSDEEP

    98304:BATeK8/PP1DPgzGlgLyp2d9SrAd62ctoD+J3gU0YBIj9:OT8dDY6qLW2d2kvYq+9TBIj9

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\The Henry Stickmin Collection\Adobe AIR\Versions\1.0\Resources\adobecp.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2708
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\The Henry Stickmin Collection\Adobe AIR\Versions\1.0\Resources\adobecp.dll",#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:2612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads