Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

Storm-A1R6T9.exe

windows7-x64

3

Storm-A1R6T9.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    102s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/08/2024, 13:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Storm-A1R6T9.exe

  • Size

    404KB

  • MD5

    6f7a7b265d9df8e1b68c6bdcfdb728c9

  • SHA1

    196376da4e1ad70427cc2ac80abc9cfef0dad3c5

  • SHA256

    aaf4e4f696d16f0b6a52a7b2a063acc86ffa42bfd7e5d24f983606edb67db53a

  • SHA512

    664b7d5ded65d08e095cd10389c1a897d849976965a7cf5480574f9213c30696c98a635e36ab6c7612e0a1fb791d0668454802f81c7d7a5e5a9395ef9c92addb

  • SSDEEP

    6144:KskpAftTC+fPioQdbrAFM4hVog+Zvo5q8BXLbeIbPRvo5q8BJwl:cAftTC+3MbrIYgeuZB7l

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Storm-A1R6T9.exe
    "C:\Users\Admin\AppData\Local\Temp\Storm-A1R6T9.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:3436

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3436-0-0x00007FF9B78D3000-0x00007FF9B78D5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3436-1-0x0000020FE3E40000-0x0000020FE3EA6000-memory.dmp

    Filesize

    408KB

    Download

  • memory/3436-2-0x00007FF9B78D0000-0x00007FF9B8391000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3436-3-0x00007FF9B78D0000-0x00007FF9B8391000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3436-4-0x00007FF9B78D0000-0x00007FF9B8391000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3436-5-0x0000020FFFF10000-0x0000020FFFF18000-memory.dmp

    Filesize

    32KB

    Download

  • memory/3436-7-0x0000020FFFF20000-0x0000020FFFF2E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/3436-8-0x00007FF9B78D0000-0x00007FF9B8391000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/3436-6-0x0000020FFFF60000-0x0000020FFFF98000-memory.dmp

    Filesize

    224KB

    Download

  • memory/3436-9-0x00007FF9B78D3000-0x00007FF9B78D5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3436-10-0x00007FF9B78D0000-0x00007FF9B8391000-memory.dmp

    Filesize

    10.8MB

    Download