Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

Balatro.Fr...2P.zip

windows7-x64

1

Balatro.Fr...2P.zip

windows10-2004-x64

1

Balatro.Fr...ro.exe

windows7-x64

1

Balatro.Fr...ro.exe

windows10-2004-x64

1

Balatro.Fr...32.dll

windows7-x64

1

Balatro.Fr...32.dll

windows10-2004-x64

1

Balatro.Fr...L2.dll

windows7-x64

1

Balatro.Fr...L2.dll

windows10-2004-x64

1

Balatro.Fr...OM.txt

windows7-x64

1

Balatro.Fr...OM.txt

windows10-2004-x64

1

Balatro.Fr...ps.dll

windows7-x64

1

Balatro.Fr...ps.dll

windows10-2004-x64

1

Balatro.Fr...se.txt

windows7-x64

1

Balatro.Fr...se.txt

windows10-2004-x64

1

Balatro.Fr...ve.dll

windows7-x64

1

Balatro.Fr...ve.dll

windows10-2004-x64

1

Balatro.Fr...51.dll

windows7-x64

1

Balatro.Fr...51.dll

windows10-2004-x64

1

Balatro.Fr...am.dll

windows7-x64

1

Balatro.Fr...am.dll

windows10-2004-x64

1

Balatro.Fr...23.dll

windows7-x64

1

Balatro.Fr...23.dll

windows10-2004-x64

1

Balatro.Fr...20.dll

windows7-x64

1

Balatro.Fr...20.dll

windows10-2004-x64

1

Balatro.Fr...20.dll

windows7-x64

1

Balatro.Fr...20.dll

windows10-2004-x64

1

Balatro.Fr...me.txt

windows7-x64

1

Balatro.Fr...me.txt

windows10-2004-x64

1

Balatro.Fr...64.dll

windows7-x64

1

Balatro.Fr...64.dll

windows10-2004-x64

1

Balatro.Fr...64.dll

windows7-x64

1

Balatro.Fr...64.dll

windows10-2004-x64

1

Resubmissions

04/09/2024, 06:11

240904-gxmmfsxbjc 3

Analysis

  • max time kernel
    144s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/09/2024, 06:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Balatro.Friends of Jimbo-P2P/Balatro.exe

  • Size

    53.0MB

  • MD5

    7f5559f0c9ecfd9db321a71565f27122

  • SHA1

    88b1ae371f6f4489b724cc4f74b8748036647e5a

  • SHA256

    5fbb7f4f79642e70f37b09669311e375e3c7fe1970a1a721b967e8502e27b5dd

  • SHA512

    08b89b0d9887fea71f31ce636b308d59bfb67d32c49a72b4801cd2a2d17ae8b96f6f3001b933c1c3b8978ee6035247991ca621e2cc03a296cb9a8292b30912e6

  • SSDEEP

    1572864:iRNbQO2JtEJJ8jCaMC6534f31nkuL2CeCCAwf:oNbQO2DqTaMRHuLGCCAs

Score
1/10

Malware Config

Signatures

  • Checks SCSI registry key(s) 3 TTPs 4 IoCs

    SCSI information is often read in order to detect sandboxing environments.

  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Balatro.Friends of Jimbo-P2P\Balatro.exe
    "C:\Users\Admin\AppData\Local\Temp\Balatro.Friends of Jimbo-P2P\Balatro.exe"
    1⤵
    • Checks SCSI registry key(s)
    • Suspicious use of SetWindowsHookEx
    PID:552
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x4b0 0x40c
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4892

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads