Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    99s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 05:50 UTC

General

  • Target

    viozicsuns.exe

  • Size

    11.6MB

  • MD5

    24202aabfb721ed164afa9a66a181245

  • SHA1

    74c30b55364a4ee095cdb96d640b7aeb726f25b6

  • SHA256

    16d1b9ed560e05ad6beb990bfa8e834c1408794fea8954a085b9e0d54f6ee2bf

  • SHA512

    2283443e7b5d8db63fb0d04655856754216cadc7fcd0faee44c4a4db0dc0ccb3f8a77cd6d6a0d1ce178f1d8b7f9813f0cab6567cc3b0f3956e202f1fd99057a5

  • SSDEEP

    196608:fu9ywHznKfrUzo4Q1OmVGBmLsdR/q5G41I6EGiiVCLl6U4ogyzUUc0r3NPOEaQXQ:fuowTKF0h48w

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 20 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\viozicsuns.exe
    "C:\Users\Admin\AppData\Local\Temp\viozicsuns.exe"
    1⤵
    • Drops file in Windows directory
    • Modifies registry class
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.