Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

scs2.exe

windows10-1703-x64

1

scs2.exe

windows10-1703-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    137s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    04/10/2024, 14:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    scs2.exe

  • Size

    1.1MB

  • MD5

    9b989a4c5f86f63955fd8c173ac01850

  • SHA1

    446a8173009890cda952f0936ba7989e8a58dec0

  • SHA256

    e0bb096bac8d7230e944cff5f44c91eda25a68e100e6f6898ea7f5594815f087

  • SHA512

    a2cc16b6928d1963958c7aff0b126a269afc7eeeb8e8abd69e2dcf2ba2b04bc999a2be3cf45e4d662b6d993b556f0ac4e484be94849ea28307fde8a0b1114c00

  • SSDEEP

    24576:DWhDu8ojDt5mJIgrikHaG3EIyldh0lhSMXlGzxn4Hes:DWFVojnB4rEswn4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\scs2.exe
    "C:\Users\Admin\AppData\Local\Temp\scs2.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:1844
  • C:\Windows\System32\rundll32.exe
    C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
    1⤵
      PID:3572

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\Desktop\ApproveInitialize.vdw
      Filesize

      495KB

      MD5

      a8462dccc752248ed08021e0d0aabcd9

      SHA1

      6a479108f51bff5bbc33856cb79e68588422f7c5

      SHA256

      a3f039bb24e71c6b5a071df2cd912c8856893d8556f56d3170fa61fbc3362531

      SHA512

      95a23a8c0b8af180c9ecf8ee18f62c08783362ee2f82a7713645e9f178cfe061dca91e3b0a91e08bbd02af2fc56eb6fcb5ab2f96a345ffea943b1ececb7f0d00

      Download Submit

    • C:\Users\Admin\Desktop\BackupReceive.mp3
      Filesize

      883KB

      MD5

      c6d07be7d6be102fb8a69510835f8052

      SHA1

      f8a3d0d8e7d21c908a64b54fc6d305628368ac3d

      SHA256

      6cfd71857b37588b7115b7905b4e748a1e49b47a846a8bad05b6cb2bc6dd7216

      SHA512

      89c7d304a9c38e0afbdf50e95e22f0b315198696a4124b4893a89acf02d7b4e18da83a7d4db78366b9848ff77f3e2e09752af40d8889193cb976ab7319a0d93d

      Download Submit

    • C:\Users\Admin\Desktop\CompressSend.i64
      Filesize

      567KB

      MD5

      0399a67bfffa2c5d8b2bf0f019bba878

      SHA1

      159f72b611bb9a4cb576b2fa11bf185be908beb9

      SHA256

      2c0a6334062e003ba5db30622a1db32f11e50ff7ea424ee26f99f5c967466f1e

      SHA512

      3125f7d13e58ccc4adcc10290647ea50fcac96f6092cd04b33957c043b7e67e564218f4051f2e973702e8702fbb2333f76fba622cef3e23e23d7e8a0b68dd41f

      Download Submit

    • C:\Users\Admin\Desktop\DismountAdd.au
      Filesize

      279KB

      MD5

      8b1eb829175e30b8383719d05a12b85a

      SHA1

      9548724390fb3c70505c8bf91dd9487e40839ce9

      SHA256

      39dbea9cac859271c68e93d8f1d3fbe37fe67711b98fe778ddd0547e258b4858

      SHA512

      123cdc3e0cefe01c32b0974980cc6e3fc8b1a611b8dc269d3271d7e508f217436bcc87f94ef4208e6d8ce9c2088a93f6d44a9d01f7584ac5d35db8b497e54129

      Download Submit

    • C:\Users\Admin\Desktop\ExportLimit.mpeg
      Filesize

      423KB

      MD5

      3faaad2978324ebaf4efc0d86badc6b1

      SHA1

      bb079310d414d2330d3f62dbd47c5637c89f2b2d

      SHA256

      e978ae95d0270c46d0a3547802b280e74d80ab1d9d7a2940cb1a92c40c2af7b5

      SHA512

      2d6a36ebf5905538ad3a9e3aec4755516128748b0eeae055261a2046295711cb9f998dcd6a77f9dd72784062362335f7d55a1b19874ba3e44bd296043f27770f

      Download Submit

    • C:\Users\Admin\Desktop\ExportRequest.7z
      Filesize

      639KB

      MD5

      ea9980b8d6047da92899ff3179471c5e

      SHA1

      644719eb0921012432ede84af9deb16666e3ff49

      SHA256

      18d79ac2ee2780e7a678c11f542b09f94ba589b903818473db585b4e150f4f34

      SHA512

      38b73fe99e299cbf3b1a78d5b178f0c3ad55f0e85b793f919fe675a8f8456e9365e5a0cd777a8fe5c21913a65bfd44f2faabe5e4501d78e7a777557fbda1f46a

      Download Submit

    • C:\Users\Admin\Desktop\GetReset.mpe
      Filesize

      333KB

      MD5

      e3f982e4ead30721eebebb3af19b6e88

      SHA1

      7275221cf2a799b5af3d3b2f431f1ce0b0277b29

      SHA256

      9e085f72ce154666ef551fa0ed913bf1fb28857287c6be436a75e445d94f6323

      SHA512

      cb33344f567dcb0ce64b3e054dac4c2ee73bff6df19437977e636b1d2b445a4205e0784af31a4de09a6d49c79a21f43fc37a783dfcec36a35ff957aca253f0b4

      Download Submit

    • C:\Users\Admin\Desktop\ImportJoin.mp4
      Filesize

      477KB

      MD5

      b130a00ab51530521b51577f75633cde

      SHA1

      cf95f1a1730bd4bcecc64d7b2c485884f350a66f

      SHA256

      06f4b36efe5bfc96a55df8d5734f3450589bec3970c43d81d3717936af596ef8

      SHA512

      c84357c3502a4a126080f1fea7a336d533529d282564cedf1dd4287628ee46b8853149654c713ca562aad39e7338a4f5009ebebd2ce594db9a02741df55dca16

      Download Submit

    • C:\Users\Admin\Desktop\InvokeReset.docx
      Filesize

      351KB

      MD5

      4610cac2fd552dadee6070cc1e6a2795

      SHA1

      bba21c7a846a614c7dd39aedb04993c31986d840

      SHA256

      4744ed0e3b82b8bac3670f435074ec16cdf3aef1fdbfcadd478ea7fe852742d7

      SHA512

      80cb7e10625ed2b5e5842c0796db0f4ffccd16d2a281343bb1d038d5e79b1545a7277c6e8c85ac29e6a1d17dfd1a9874fb9a12026beab11bb73b3aa05b86843b

      Download Submit

    • C:\Users\Admin\Desktop\JoinGet.vstx
      Filesize

      549KB

      MD5

      30f9e812e96f0599b98ff6c0fd6d74c9

      SHA1

      c41a77372ded9185ab5becf24a8e60c50b0e7517

      SHA256

      67f1e8367e8763a5d13d4d6a7fe242b689e2d2b53e1600172fe26f62c80323bf

      SHA512

      b4ce78a207a9f2beaba1d85c4b81d0c121d0d3eb49126fc1e2b54c6d8b7f48b2baae79a7748834e3e6e672954333f3a844bd0bb613c887433ab9828b760d15b8

      Download Submit

    • C:\Users\Admin\Desktop\LockClear.pptm
      Filesize

      243KB

      MD5

      659f32d927300c6d0f23e6d8db8b0c48

      SHA1

      84dabe6dd66fd56d1320d9e6309b8c2e7e16c167

      SHA256

      14de60d9e9047de2133f9b9571346053759413390b050b7a10d831d8b602a2f6

      SHA512

      055eac5fc547e002c48ef55ec0012a65fb95cd03b9d7d7863d7bc65ffe80e68d1693e97a115615003d1a01e106eb9b1ee40fca86843c16594a61158ed28f0b5c

      Download Submit

    • C:\Users\Admin\Desktop\MeasureRead.txt
      Filesize

      621KB

      MD5

      233ad8d72937e4de96213c2000c9c7fd

      SHA1

      db9f03d95fd56b8352da55e89c0b212b5badc06e

      SHA256

      4a2ccb445fef2e09ae9af5a06b7647ff4306c02986d6f415a8e18786587d60b3

      SHA512

      ba989d74b876d4b583b51e7c2aa2358dea199bb894129b86e8ff26bac53d189c59a98258b959604cca538702bfbe7c4b9198470366717a99bccdc2e96e6d0317

      Download Submit

    • C:\Users\Admin\Desktop\MeasureSearch.snd
      Filesize

      387KB

      MD5

      6bc839b8fe8191b148fe37574d85d179

      SHA1

      319044c83d57c65c18c741983a04d1ecc4115421

      SHA256

      95f75ca3598adb592502fc3e68540923a248a4f6576ebcd5f7d3b49f43eb6908

      SHA512

      be6e6b5d6dfce02588c5b684553e1e7c81809c05478c212bb9f0e32cc77e2b4ebec384220f599df763a2cff4813d76710e8d9912fa2e021add99355a5634333b

      Download Submit

    • C:\Users\Admin\Desktop\MountMeasure.odt
      Filesize

      405KB

      MD5

      4f98fcd763e91cf5c62442cb6edb7050

      SHA1

      9cb77610962f10739f316c0b87800244fa37ac54

      SHA256

      06097b960d4f3b2ef7ee20ee3e335d4b52e727096f7cafbbf81a5eb37002a8de

      SHA512

      c4309d1e58a1ff7cf42dd012527a67d9f03a662f998e09eac22d6725e2376a8f35870fc001c553e1d2e710c5f7d66cc80a36261284ea5c4cae0ad52080288763

      Download Submit

    • C:\Users\Admin\Desktop\OutLimit.dxf
      Filesize

      369KB

      MD5

      b8a13fbfd5f787823bdec9afd460f682

      SHA1

      ec9f912b7fd4302de511a089a89e5498086feaf5

      SHA256

      9bd45d6cffa606a7b1856576e7b12b983e2bec2ea625ceb336e238595a845b04

      SHA512

      024b44a8395899d3c1ec673d2fbddedce0eb293fc397843197a82360b06e6b074b70c13b77a531d735aa07da800a582257f344f92709ca104f3651af79478742

      Download Submit

    • C:\Users\Admin\Desktop\RenameExit.midi
      Filesize

      297KB

      MD5

      3f9a90c966edc6c20a23eda354510b6f

      SHA1

      07831d15bf11a03a997eead3029ffa38340d04b2

      SHA256

      eb01689534be84e728424390a543c8a0a5d661b4c8bb5d477cd707cfceb784b0

      SHA512

      9b0323df4cb4cd811f621939dd32f64d06436bebe4d88f9b036f7fb60b69770564a26254df90e66eb3ef73faa7bf13edb223d1fc2fb33c927a8347270eea823d

      Download Submit

    • C:\Users\Admin\Desktop\RestartSearch.mpp
      Filesize

      459KB

      MD5

      c87f061a329d22c771308cda621bd4b1

      SHA1

      58fb2d80ec48104b4cf2e26ebdf9056aff09c472

      SHA256

      008deb4f0ece59f4d6e34210afc96d54dee7765e60fc6e52dda104d2cc0271a8

      SHA512

      c06ded3cafd67dd8e5ed23db51751331f0d84d7f015dbf5b61c509bdceb69e153c8dd4782beb82c32186b18efbde674357be4bc69e2aa6e14da067dd89bcf339

      Download Submit

    • C:\Users\Admin\Desktop\SendSplit.DVR-MS
      Filesize

      441KB

      MD5

      36e11a865fa6e624e293bc22e201455c

      SHA1

      704a14add698fea08f7167cb4284fd9554444b3a

      SHA256

      ca46de6d05918f1081f303ad424f6c99f38d76b43bc530834ebd6acd160468c4

      SHA512

      f795b8e87ba7c9d3b4de6f697e7ff700954cb30dc2eea58ce0f92609d1884fb15f4e97513be3617d943bf12ab86d15b066b55197b66af3fa2d615865159748f1

      Download Submit

    • C:\Users\Admin\Desktop\StartSkip.css
      Filesize

      603KB

      MD5

      84cde8121b946029faa8d9af555aec8b

      SHA1

      85d657d9058abe6c98f46bf5e60c3c9149bf818c

      SHA256

      dff790b7740a85c83770cd23c8cf26d8bc1f73746b300d716c6a834b86c87214

      SHA512

      45b681ed25a31905821cdade0e86f480677e533d786d06b84afc2361b73e47566422d7cb9dd954e07948493316c8124a11a867b833d97d2ad6df376925ac24f9

      Download Submit

    • C:\Users\Admin\Desktop\StepSuspend.tif
      Filesize

      585KB

      MD5

      2dbe3fdf7893f322256424421862c16b

      SHA1

      e1e710a9a4715efbf282a8de7d88f94e0680f65f

      SHA256

      a67d9b3583b576e2b8f06fceb35d8a27ff94b9b30f1db9e4b3b97191fb090765

      SHA512

      bda859a6297ca958c975e43f54432cf4a924a8f922d6d48f7e0b1acfc6c00a388961e47925de7a9041443bb20264a6a9efba3949d203198b58db913ca95c9480

      Download Submit

    • C:\Users\Admin\Desktop\StopPublish.xml
      Filesize

      531KB

      MD5

      540647f4dc8d4dac8177a01accfd6f87

      SHA1

      6b9830a54cfbfaa473ea12c44b559d1577b47fd1

      SHA256

      9e72212658b30071251f74cf69a60fb3388afb04a51f4f7e43dc24426bd4a970

      SHA512

      b511181b5ead46d5b27bc87cafd477be2afb8b16ba701c48604272b2280babc2462a04a67e21f14ac17ef41c9e6fe4a23891af8ccb96fe8764c8b77f4971447d

      Download Submit

    • C:\Users\Admin\Desktop\StopResize.doc
      Filesize

      225KB

      MD5

      d0710f328bc8c26d815c1362aed837a2

      SHA1

      20be41b7951e9a2f43740101e310c66033ad3d29

      SHA256

      f3781cb5edbb3e1d3aae3dec62b3b0fa9c229174eb4ed9239840da38f971a443

      SHA512

      6740099cbed65772dcfe6acb557dc7ff16acb5cbf4ebd1eb59358bf7acbc046a1bb3f1d8ce4554fb045c468596a6baf9b3aee6e486bac7a229fe0d1f6588a55d

      Download Submit

    • C:\Users\Admin\Desktop\SwitchPing.ico
      Filesize

      315KB

      MD5

      27be526f9a11678ff3bbb09628dcb9dd

      SHA1

      8cba598132e8b5b4421f681eabf1371164500adf

      SHA256

      50f1cf8a26c3f629d77e3a7d8899dc3af31b0a5b77e19855c74ea0689e776543

      SHA512

      d827b0e9d537250c0ad951c822c4261aa60320533a0e4f2b2547b2dc9ffcfce6152c91bc3a4967208a5cc9ac81fbf9fdf41749228d811570fc72836ac2a343ba

      Download Submit

    • C:\Users\Admin\Desktop\UnlockCompare.sys
      Filesize

      513KB

      MD5

      ece4a115f7136693f7714f0c3d695cc6

      SHA1

      8b63948469174f17774be7d3cfacda30ca1a8268

      SHA256

      05f9cd285fd67a74ede4064bb4d7fcf4c8d4d804b777479c2ea416a9287c76c3

      SHA512

      39f33744cf792aeb09cd2062334e9c507a56f3c402e4bc6aa5fb81bbf75501497f307d85aa8f4f31116772f5df1e02bbd93143e33eae7dfe7353f9486d849c40

      Download Submit

    • C:\Users\Admin\Desktop\UnpublishDisconnect.rm
      Filesize

      261KB

      MD5

      44b1bcb111ed96110c6a380441a787af

      SHA1

      f6eb45cae07f8cd0fc2b84c0335a2a7e0a1751f6

      SHA256

      20722684ac294be2189e3db78aa2870364a508b9144ab46eb4cfb031fb352452

      SHA512

      2d5613e4af2604d8a3901118ce2986c1c962ca489d266721d6a4c8f2056a3773ce6fefef6fe49c7a595efceb6f90a9571ea40688c7fff6e39245a9a330a2eacf

      Download Submit

    • C:\Users\Public\Desktop\Acrobat Reader DC.lnk
      Filesize

      2KB

      MD5

      204b4c82c8e1d2cac6edaa042c5dc07e

      SHA1

      8ebd5d10db1f290c04e18b8761298f47ef4bec32

      SHA256

      95bc090a2401c8c8f7dbfd0aa9f7c7db357023c6f88cff51bd2b0c22303ec26b

      SHA512

      42fa91abd64d2bfcacf8c0e3b6a3bd662c93d565dbe1671a6f27dae1b27370bb02c0ad8b0001196b7efa8eccfb493c8b613bcd17a4bc3f3634ff1f619a190715

      Download Submit

    • C:\Users\Public\Desktop\Firefox.lnk
      Filesize

      1000B

      MD5

      ba2a700143c6cabe7274d784799d5042

      SHA1

      88c8f8b098a602adc871049d379d167288fc8362

      SHA256

      0ab7cf4ff922198e78813d1337539cd181a36bb24a7bf6faeae184c96eae232e

      SHA512

      e5423ca1581ec32411c0649918c9f9b6f4eb06375f5a169db989a9579d23cc36bf17ee988c50b5e168941a3bcb58a3a41344f7f7a6321cce921c9bbcec362990

      Download Submit

    • C:\Users\Public\Desktop\Google Chrome.lnk
      Filesize

      2KB

      MD5

      d3104415fc7670714693ec26af0bb5d1

      SHA1

      981d9234ad3a213dcd9b75b6ffefb41ff774053d

      SHA256

      b4be9e061a89ff4791059d7b0d5b9fea4a3339ddabc413ec462e619ca34099e5

      SHA512

      c80b6e8feb6b1a8208683f617cd3781f044145619cb6111afefff3725cc95a2d77762a4d2f4f9dde6c3aa12c9a416ff8f6a4c039e9536c25f083fda47093bf56

      Download Submit

    • C:\Users\Public\Desktop\VLC media player.lnk
      Filesize

      923B

      MD5

      b688114bd3452d41942d9d8998c39da2

      SHA1

      6f1f6b087b02a0e1f25712765dcad66500f23cbe

      SHA256

      e8bb66b7329ea153cf59e262ff2ed943e54331e0de4c5ed08a92190823bfa95a

      SHA512

      d0f5ac6178962b7fdba01ad2d8f5cb126ad6f18f2c1230f213d6af9f2c36beddfc71bac80ed306369df65b524bcb80bb4bb4011c8029824badbc9feee34b7417

      Download Submit