Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

4

Terabox_1.32.0.1.exe

windows10-ltsc 2021-x64

6

$PLUGINSDI...fg.ini

windows10-ltsc 2021-x64

1

$PLUGINSDI...fo.xml

windows10-ltsc 2021-x64

3

AppProperty.xml

windows10-ltsc 2021-x64

3

AutoUpdate...fo.xml

windows10-ltsc 2021-x64

3

AutoUpdate/config.ini

windows10-ltsc 2021-x64

1

CEF license.txt

windows10-ltsc 2021-x64

1

ChromeManifest.json

windows10-ltsc 2021-x64

3

DuiEngine license.txt

windows10-ltsc 2021-x64

1

TeraBoxTor...le.ico

windows10-ltsc 2021-x64

3

VersionInfo

windows10-ltsc 2021-x64

1

VersionInfo2

windows10-ltsc 2021-x64

1

autobackup.ico

windows10-ltsc 2021-x64

3

browserres/cef.pak

windows10-ltsc 2021-x64

3

browserres...nt.pak

windows10-ltsc 2021-x64

3

browserres...nt.pak

windows10-ltsc 2021-x64

3

browserres...ns.pak

windows10-ltsc 2021-x64

3

browserres...es.pak

windows10-ltsc 2021-x64

3

browserres...US.pak

windows10-ltsc 2021-x64

3

browserres...CN.pak

windows10-ltsc 2021-x64

3

cacert.pem

windows10-ltsc 2021-x64

3

icudtl.dat

windows10-ltsc 2021-x64

3

module/Ter...ist.db

windows10-ltsc 2021-x64

3

resource.db

windows10-ltsc 2021-x64

3

skin/skin.zip

windows10-ltsc 2021-x64

1

snapshot_blob.bin

windows10-ltsc 2021-x64

3

sounds/1.wav

windows10-ltsc 2021-x64

1

sounds/2.wav

windows10-ltsc 2021-x64

1

sounds/3.wav

windows10-ltsc 2021-x64

1

sounds/4.wav

windows10-ltsc 2021-x64

1

terabox_ex...me.zip

windows10-ltsc 2021-x64

1

terabox_logo.ico

windows10-ltsc 2021-x64

3

Resubmissions

27/11/2024, 20:39

241127-zfpdtszjes 6

27/11/2024, 20:33

241127-zbwbksvqhl 6

25/11/2024, 22:14

241125-15w1mswlcp 6

25/11/2024, 20:57

241125-zryrmswke1 6

28/09/2024, 18:21

240928-wzje5ssdlc 10

Analysis

  • max time kernel
    110s
  • max time network
    130s
  • platform
    windows10-ltsc 2021_x64
  • resource
    win10ltsc2021-20241023-en
  • resource tags

    arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system
  • submitted
    25/11/2024, 22:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sounds/2.wav

  • Size

    377KB

  • MD5

    4408f456a35c301ee1b951e20ffa71bb

  • SHA1

    63604caf85ad088dd066028e52ed4a2543da76c8

  • SHA256

    7fa9cf8acd084895cd9841386df059a29897b7cac9d52cc5e1df16e6a9162549

  • SHA512

    8a963ecd50eb26f630ebda32dec2206b1412651b6574cd55596fa3e5b5d84ab9c166a1db26639b61f0c5613ffa50e07c1c609bf0f57a1de0f59a3395b5a42c5d

  • SSDEEP

    6144:sqAsjVIwo4gpm6dSg3x6R2Bc1/nxg4h46dBTu+2JRwg0hkdeFEEJ:5nVIwobF34Rcc9nxgk4qswBhkdeFEE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 4 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\sounds\2.wav"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2468
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x514 0x500
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:4536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2468-5-0x00007FF734DC0000-0x00007FF734EB8000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2468-6-0x00007FFBC87E0000-0x00007FFBC8814000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2468-11-0x00007FFBC9300000-0x00007FFBC9317000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2468-14-0x00007FFBC8650000-0x00007FFBC8661000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2468-13-0x00007FFBC8670000-0x00007FFBC868D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2468-12-0x00007FFBC8690000-0x00007FFBC86A1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2468-7-0x00007FFBC7910000-0x00007FFBC7BC6000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2468-9-0x00007FFBCEF00000-0x00007FFBCEF17000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2468-8-0x00007FFBCF390000-0x00007FFBCF3A8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2468-10-0x00007FFBCAB20000-0x00007FFBCAB31000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2468-15-0x00007FFBB9270000-0x00007FFBB947B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2468-19-0x00007FFBC8500000-0x00007FFBC8518000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2468-22-0x00007FFBC8420000-0x00007FFBC8431000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2468-21-0x00007FFBC84C0000-0x00007FFBC84D1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2468-20-0x00007FFBC84E0000-0x00007FFBC84F1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2468-18-0x00007FFBC8620000-0x00007FFBC8641000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2468-17-0x00007FFBC8520000-0x00007FFBC8561000-memory.dmp

    Filesize

    260KB

    Download

  • memory/2468-16-0x00007FFBB81C0000-0x00007FFBB9270000-memory.dmp

    Filesize

    16.7MB

    Download