Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

Battly-Lau...in.exe

windows11-21h2-x64

10

resources/...ute.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/...DME.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/...ime.js

windows11-21h2-x64

3

resources/...cli.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/...tch.js

windows11-21h2-x64

3

resources/...ark.js

windows11-21h2-x64

3

resources/...put.js

windows11-21h2-x64

3

resources/...col.js

windows11-21h2-x64

3

resources/...ten.js

windows11-21h2-x64

3

resources/...ema.js

windows11-21h2-x64

3

resources/...ate.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/...rse.js

windows11-21h2-x64

3

resources/...tup.js

windows11-21h2-x64

3

resources/...ten.js

windows11-21h2-x64

3

resources/...col.js

windows11-21h2-x64

3

resources/...ut.exe

windows11-21h2-x64

3

resources/...uts.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/.../de.js

windows11-21h2-x64

3

resources/.../en.js

windows11-21h2-x64

3

resources/.../es.js

windows11-21h2-x64

3

resources/.../fr.js

windows11-21h2-x64

3

resources/.../it.js

windows11-21h2-x64

3

resources/.../pt.js

windows11-21h2-x64

3

resources/...ain.js

windows11-21h2-x64

3

resources/...r.html

windows11-21h2-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    157s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    15/09/2024, 23:42 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    resources/app/node_modules/protocol/lib/unflatten.js

  • Size

    1KB

  • MD5

    abc00ee24fc5e80ec876ea32c1db2b0b

  • SHA1

    3a61753e6d42af1e25a168cd59ce937b3fc189b1

  • SHA256

    a5a5f71309cc917ce73621d3f94ed5dcca2e72cfde04381462075b3337101bb4

  • SHA512

    432b2f84283b51bc2c460380761e0a2d62ce17d561f89934c9b13109924deca6ffae7a393dcf076fc0f204ee4934666cd532208c214685438bd1d3f445f02143

Score
3/10
execution

Malware Config

Signatures

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\resources\app\node_modules\protocol\lib\unflatten.js
    1⤵
      PID:4396

    Network

    • flag-us
      DNS
      95.221.229.192.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      95.221.229.192.in-addr.arpa
      IN PTR
      Response
    • 52.111.229.43:443
      322 B
       7
    • 8.8.8.8:53
      95.221.229.192.in-addr.arpa
      dns
      73 B
       144 B
       1
      1

      DNS Request

      95.221.229.192.in-addr.arpa

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.