Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

LBP_3.14.0.zip

windows11-21h2-x64

1

LBP 3.14.0...aft.gz

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

LBP 3.14.0...nction

windows11-21h2-x64

3

Analysis

  • max time kernel
    77s
  • max time network
    88s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    03/09/2024, 10:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LBP 3.14.0/datapacks/LBP3/data/bastionbuilder/functions/internal/extensions/hoglin_stable/lower/lower_0/rot_180.mcfunction

  • Size

    4KB

  • MD5

    c90a0c132ba753d33aae40d2fa90cf96

  • SHA1

    e73a5558f1a7d394f6f74a193d7c8e5477de16d2

  • SHA256

    fb12ecc5ffe372abb185650d83b2f0a0f3068522f79e8a76e8a1a339dbded582

  • SHA512

    369963c36071eb3f8722e052bcc8c7c41f25135e056bb8232b2f2b1af287de05f956b2cbb0128adfe9935da53ef718e876524c56f5cb93bb08b38f78c9feec18

  • SSDEEP

    96:NtMKcY2fbSfq0f20XOhE6XkBf31tkkiNRpYA1hc/mgZhsux0fcYRq:NludG

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c "C:\Users\Admin\AppData\Local\Temp\LBP 3.14.0\datapacks\LBP3\data\bastionbuilder\functions\internal\extensions\hoglin_stable\lower\lower_0\rot_180.mcfunction"
    1⤵
    • Modifies registry class
    PID:1676
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:3164

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads